Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

AT&T accused of breaking customers' secure email "security"

  • 13-11-2014 7:10pm
    #1
    Impetus
    Registered Users, Registered Users 2 Posts: 1,667 ✭✭✭


    AT&T (and other ISPs) have apparently been removing the STARTTLS from encrypted emails sent by customers over the internet. This causes the "encrypted" emails to be transmitted as plaintext.

    There is no equivalent to Article 8.1 of the ECHR in US law - but one wouldn't be surprized if some bright lawyer comes up with a legal basis for a class action against ISPs where the tamper with encryption settings in internet packets.

    http://arstechnica.com/tech-policy/2014/11/condemnation-mounts-against-isp-that-sabotaged-users-e-mail-encryption/


Comments

  • #2
    Manach
    Moderators, Society & Culture Moderators Posts: 9,768 Mod ✭✭✭✭Manach


    The EU Data protection directive would have issues with that type of action. I'd reckon though that the T&Cs of carriage the AT&T use might have clauses to indemnify them. As well, fairly well known that AT&T at the behest of US intelligence agencies (Master Switch by T.Wu) copy network traffic and hence would need that to be in cleartext so it could be datamined should the need arise.


Advertisement