Gmail uses Perfect Forward Secrecy, so what? If the NSA really does have direct ...

AJ007 · on June 24, 2013

The NSA is getting all of the attention, but this applies to all of the world's intelligence services.

Even if you absolutely believe and support what the NSA is doing, you probably have good reason to want any number of governments, foreign competitors, and individuals from knowing what you are doing or (at the least) your financial status.

y0ghur7_xxx · on June 24, 2013

> you probably have good reason to want any number of governments,

> foreign competitors, and individuals from knowing what you are

> doing or (at the least) your financial status.

...and you should therefore ignore PFS in https, and use something that encrypts your data so that only the recipient can read it, and not someone in the middle like google, microsoft or facebook.

mafribe · on June 24, 2013

Sure, but if Googles stores all session keys, as is likely (key phrase: meta-data), then the session data store is a rich and likely target for all the world's intelligence services, and one that is not invulnerable. After all, Google is a big organisation with a large turnover of staff.

declan · on June 26, 2013

I would say that storing session keys is vanishingly unlikely and eliminates the benefit of PFS. Google probably spends millions of dollars a year in PFS additional handshake costs. Google then storing the session keys would be a little like the Dutch building an expensive dike and then knocking a big hole in it.

If you want to store data like "user X searched for Porsche 911 GTS 0-60 statistics, so let's show him some 991 Cabriolet ads the next time we can," you don't need to store the session keys.