The governments of the Five Eyes countries say that if tech companies can't help find a way to provide access to encrypted data, laws may be the answer.
Google is done with reminders and warnings. It began marking web pages not using HTTPS as "Not Secure," and it turns out some of the world's most popular sites are affected.
The CA Security Council's London Protocol attempts to address the problem of phishing sites with legitimate SSL/TLS certificates, but the initiative perpetuates the myth that the pricier EV certificates are more secure than DV certificates.
A new project from the EFF offers a quick path to a more secure email ecosystem.
A bug from the 1990s allows attackers to spoof signatures on some encrypted emails in GnuPG and other tools.