Also, AFAIK, you cannot be compelled at this point to provide a PIN/password (short of the rubber hose) but someone can just use your finger to unlock a phone. Yes, tradeoffs but the convenience factor is not worth it IMO.
The problem is that it's personal email, therefore, not the governments business or problem. That's why they aren't allowed to use their personal email for work purposes.
For the really important stuff, they don't even cell remote access. You have to do everything at a secure location.
> That's why they aren't allowed to use their personal email for work purposes
Since when?
I agree it should be the policy, but it's not. Evidenced by Hillary Clinton's scandal[1], as well as the recent Director of the CIA[2]. In neither case (so far) has the individual been punished. In Hillary's case, the State Department is even siding with her use of private email for official business (including recently discovered classified documents with the header deleted [3]).
It's easy to dismiss the contents of their personal email and social media as irrelevant but surely they represent possible attack vectors for extortion or worse.
What they need is to blacklist personal email so a compromise there doesn't grant the keys to the cattle. It shouldn't be possible for any government employee to correspond through their private a accounts.
1. Issue iPhone with finger scanner for MFA for all important access. This works so easy that it would be hard for someone to screw it up.
2. Setup home networks to always use secure tunnels ( custom routers with openvpn settings, Etc).
3. MFA all accounts.
The key is to make it so easy to do things the right way that it's hard to mess it up.