By your description, I don't like SMTP STS either. I think a better idea would be to address the problem from the client side. What if the proposers of STS, who handle a large amount of the world's email, made public a policy to advantage encrypted connections over unencrypted ones? Our experience with the SHA2 certificate conversion shows that this can work, even if it is painful.
In the SHA2 transition, Google used Chrome warnings to bring progressively greater pressure as a publicly-stated deadline approached. For mail, Google could begin by delaying messages that must cross a non-secure hop. Or, their knowledge of their own flows would allow them to predict, and therefore present to the Gmail user, that the message will be sent without encryption. No provider "XYZ" wants to be mentioned in the warning, "Your message to email@example.com will be sent without encryption because xyz.com cannot receive messages securely." Eventually, Google could even bounce messages, with "Encryption required but not available." They could permit users or corporate customers to opt in, then opt out, and eventually remove the option.
- AmTrust Financial Services, Inc.Senior Security Analyst, 2015 - present
- Hyland SoftwareNetwork and Security Administrator, 2011 - 2015Responsible for the network & security infrastructure of Hyland's global OnBase Online cloud Enterprise Content Managment solution.
- PolyOneEnterprise IT Security Architect, 2007 - 2011Responsible for the network & security infrastructure of PolyOne's datacenter and numerous plant & office locations.
- Case Western Reserve UniversityNetwork Security EngineerResponsible for the network & security infrastructure of CWRU's datacenters and campus.
- General ElectricComputer Scientist
- Case Western Reserve UniversityComputer Engineering, 1993 - 1998
- Notre Dame Cathedral Latin High School1989 - 1993
- Saint Felicitas School
- Rensselaer Polytechnic Institute
- Monument Valley
- Dark Echo
- Pac-Man 256
- Plants vs. Zombies 2
How to clear the cache on the Nexus 5X - AndroidPIT
Is your Nexus 5X crashing, force closing apps or otherwise acting all weird? The cache may be the culprit. Here's how to clear the cache on
The New Payola: Deals Landlords Cut with Internet Providers — Backchannel
Here’s how big internet providers are make a sham of the “free market”
How to create near-infinite clones of your favorite tomato (or any) plant
Let science get your kids—or even just you—into gardening.
Russ – the Robinson Crusoe of Our Time – Clay Jenkinson
Speaker, Scholar, Author & Historical Interpreter
FCC And FTC Join Forces To Investigate Slow And Missing Security Updates...
Most of the mobile devices sold in the US have to wait a long while for security updates to be developed and deployed, and that's just if yo
Google, This Should Be The Gold Standard Of Changelogs—Please Do It More
There's this thing Google does with app updates. Or rather, maybe I should say doesn't do. And that's tell us what has actually changed. You
B.C. spot prawn numbers could fall with loss of kelp as starfish die off...
About half of all the kelp in Howe Sound has disappeared, thanks to the starfish die-off over the past two or three years, and that could af
It's time for Microsoft to fix the Windows 7 update slowdowns | InfoWorld
Even with the latest Windows Update client, applying updates remains glacially slow
Rant: Cisco claims “We’re Listening” to Simplifying Cisco Software Licen...
Software Defined Networking, Data Centre and Infrastructure
'Universal Copy' Can Copy Text Fields In Apps That Don't Let You Copy An...
It's the little things that can turn into big things that mess up a person's mood. Let's say you're trying to copy and paste an offer that p
How to view Chromebook network properties in the Chrome Operating System...
Dell support article tagged with: Chromebook, network, properties, how, to, check, chrome, chrome os. This is an article from the official D
Poking around your Chrome OS Device - The Chromium Projects
Home of the Chromium Open Source Project
Linux on the NUC: Using Ubuntu, Mint, Fedora, and the SteamOS beta
Intel's mini desktop handles four prominent distros with a few headaches.