got it, "double encryption" seems a little misleading of a term... but encrypting an encrypted message didn't make much if any more sense either. I guess I assumed that encrypting private keys was (also) standard practice? Maybe not.
The double encryption has to do with the treatment of passphrases and private keys (see below). The text below is from the Google cache of Lavabit's former website. Reliably defeating this would mean changing how their software works (misrepresenting the company to their customers), which is the heavy-handed PRISM technique.
Is there any other benefit?
Yes, it seems like Lavabit is now going to be compromised with their users... if they stand back up, it will always be suspected that they were "turned"?
============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com
| Free forum by Nabble | Edit this page |