{"id":182,"date":"2015-03-16T09:26:47","date_gmt":"2015-03-16T09:26:47","guid":{"rendered":"http:\/\/www.dogoodsoft.com\/blog\/?p=182"},"modified":"2024-12-23T07:53:47","modified_gmt":"2024-12-23T07:53:47","slug":"yahoo-puts-email-encryption-plugin-source-code-up-for-review","status":"publish","type":"post","link":"https:\/\/www.dogoodsoft.com\/blog\/yahoo-puts-email-encryption-plugin-source-code-up-for-review-182\/","title":{"rendered":"Yahoo puts email encryption plugin source code up for review"},"content":{"rendered":"<p><a href=\"https:\/\/www.dogoodsoft.com\/blog\/wp-content\/uploads\/2015\/03\/Snap4.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-183 size-full\" src=\"https:\/\/www.dogoodsoft.com\/blog\/wp-content\/uploads\/2015\/03\/Snap4.jpg\" alt=\"Yahoo puts email encryption plugin source code up for review\" width=\"626\" height=\"421\" srcset=\"https:\/\/www.dogoodsoft.com\/blog\/wp-content\/uploads\/2015\/03\/Snap4.jpg 626w, https:\/\/www.dogoodsoft.com\/blog\/wp-content\/uploads\/2015\/03\/Snap4-300x202.jpg 300w, https:\/\/www.dogoodsoft.com\/blog\/wp-content\/uploads\/2015\/03\/Snap4-1x1.jpg 1w\" sizes=\"auto, (max-width: 626px) 100vw, 626px\" \/><\/a><\/p>\n<p>Yahoo released the source code for a plugin that will enable end-to-end encryption of email messages, a planned data-security improvement prompted by disclosures of U.S. National Security Agency snooping.<\/p>\n<p>The company is asking security experts to look at its code, published on GitHub, and report vulnerabilities, wrote Alex Stamos, Yahoo\u2019s chief information security officer, in a blog post.<\/p>\n<p>The plugin should be ready by year end, wrote Stamos, who gave a presentation on Sunday at the South by Southwest conference in Austin, Texas.<\/p>\n<p>Yahoo and Google have been collaborating to make their email systems compatible with end-to-end encryption, a technology based on the public-key cryptography standard OpenPGP. End-to-end encryption is not widely used, as it can be difficult for non-technical users to set up.<\/p>\n<p>The technology encrypts a message\u2019s contents so only the sender and recipient can read it. A message\u2019s subject line is not encrypted, however, and neither is the routing metadata, which can\u2019t be scrambled since it is needed in order to send a message.<\/p>\n<p>A video included in the post by Stamos showed how someone could set up an encrypted message much faster using the company\u2019s plugin versus using GPG Suite, a software package for sending encrypted email on Apple\u2019s OS X.<\/p>\n<p>Yahoo vowed to improve its data security after documents leaked by former NSA contractor Edward Snowden showed the spy agency had penetrated the company\u2019s networks as well as those of many others, including Google.<\/p>\n<p>Email encryption is one of a number of security improvements Yahoo and Google have undertaken.<\/p>\n<p>In March 2014, Yahoo began encrypting traffic flowing between its data centers after information from Snowden indicated the NSA had access to those connections.<\/p>\n<p>Google also encrypts connections between its data centers. Like Yahoo, the company has published its Chrome extension for end-to-end encryption on GitHub as well.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Yahoo released the source code for a plugin that will enable end-to-end encryption of email messages, a planned data-security improvement prompted by disclosures of U.S. National Security Agency snooping. The company is asking security experts to look at its code, published on GitHub, and report vulnerabilities, wrote Alex Stamos, Yahoo\u2019s chief information security officer, in &hellip; <a href=\"https:\/\/www.dogoodsoft.com\/blog\/yahoo-puts-email-encryption-plugin-source-code-up-for-review-182\/\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">Yahoo puts email encryption plugin source code up for review<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[72,73,71],"class_list":["post-182","post","type-post","status-publish","format-standard","hentry","category-news","tag-email-encryption","tag-email-encryption-plugin-source-code","tag-yahoo"],"_links":{"self":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts\/182","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/comments?post=182"}],"version-history":[{"count":1,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts\/182\/revisions"}],"predecessor-version":[{"id":184,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts\/182\/revisions\/184"}],"wp:attachment":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/media?parent=182"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/categories?post=182"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/tags?post=182"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}