Google is researching ways to make encryption easier to use in Gmail
In response to Edward Snowden’s mass surveillance revelations, Google is working to make complex encryption tools, such as PGP, easier to use in Gmail.
PGP, or Pretty Good Privacy, is an encryption utility that historically has been difficult to break. But Google has “research underway to improve the usability of PGP with Gmail,” according to a person at the company familiar with the matter.
VentureBeat’s source at Google acknowledged that “end-to-end encryption is the best defense for message protection, though it comes at considerable cost in functionality.” PGP is currently compatible with Google’s Gmail service, although it’s widely regarded as unapproachable to a majority of Internet users — like the Tor project. Third-party services, including GPG Tools and Mailvelope, have worked to make such encryption more approachable but have largely failed to reach a mainstream audience.
GPG Tools, maker of an extension for Apple Mail, tells VentureBeat that it saw a surge of downloads in July following the first NSA reports. Yet, that spike didn’t last: “The number went down quickly and was back to normal in September,” the company told us. GPG Tools says it sees around 13,000 downloads per month — with spikes following new releases.
Google has a fighting chance of significantly boosting PGP’s adoption if it can pull off integrating it into Gmail. It’s currently unclear how such an integration will take place and whether such a solution will end up buried behind a settings menu.
The Electronic Frontier Foundation (EFF) tells VentureBeat that PGP “offers stronger protection than SSL/TLS because private user data cannot generally be decrypted by the company or by any third parties, including government agencies.” The EFF notes that Mozilla has struggled to make key-based, end-to-end encryption tools more approachable with Firefox Sync