The future of PGP..

ok.

:)

For what it's worth I am trying to organize a PGP keysigning. Send me an email with your public key and I'll be sending more information during Defcon.

I always thought it would be neat if there was some server level encryption of email so that even if you chose not to encrypt your email, that the mail servers would talk to each other encrypted.

Basically each mail server would generate a public and private key. The public key would be hosted on numerous key servers. When I send email from my pacbell.net account to someone at earthlink.net, pacbell's smtp server would connect to a number of key servers (the number varying on paranoia level to ensure that the public key being requested matches on more than one server) and encrypts all mail going to earthlink.net with earthlink's public key so that it goes from point A to point B encrypted to deter sniffing somewhere in the middle. The same concept could be used between mail client and smtp server.

Maybe something already exists like this. If so I'd like to hear more about it. I haven't paid much attention to gpg and what it is currently able to do.

server to server encryption, only exist if you use VPN as your connection, though disappearing mail technology is similar to this concept and both server need to be their client to use public/private keys.

server side email encryption - unicrypt

bit of a different approach, definitely worth having a poke around on their web site

Thanks for the info, checked out the site. It seems promising because they support both PGP and S/MIME. I hope I can check the tool.

cheers,
tw.