NHS email encryption
Adrian Midgley
ukcrypto at chiark.greenend.org.uk
Sun, 26 Aug 2007 14:00:36 +0100
Charles Lindsey wrote:
> On Sat, 25 Aug 2007 14:07:27 +0100, Adrian Midgley
> <amidgley2@defoam.net> wrote:
>
> I don't think STARTTLS will ever give you "end-to-end" encryption. The
> most it can do is to protect you against eavesdroppers on the external
> lines. Within the nhs server farm the message would still be in the
> clear, where any NHS employee could see it.
Well, system admins anyway, and security personnel.
But yes, that is what I also don't think, and it is what it is described
as definitely doing...
>
> If you want end-to-end encryption, then you use multipart/encrypted.
> Or PGP.
That's what I do. gpg.