Collective Intelligence Podcast, EFF’s Jeremy Gillula on Encrypting the Internet
Encryption technology has gone mainstream to a large extent on the web. Consumers have a better understanding of site security because of padlocks, verified seals, and even the “S” in HTTPS in a URL. Organizations, meanwhile, understand that trust between customers and the business often starts with a secure connection, and have responded by deploying TLS to ensure that integrity.
But that doesn’t mean all internet traffic is secure. Critical infrastructure such as some server connections, DNS, and even email still lack the same widespread integrity as web connections.
In this episode of the Collective Intelligence Podcast, Dr. Jeremy Gillula, tech projects director for the EFF, joins Mike Mimoso for a discussion about the technologies and directions required to ensure that encryption of internet traffic is the default moving forward.
Gillula recently spoke at the ShmooCon conference in Washington, D.C., about the need to extend encryption to these three critical areas, and promoted the deployment of encrypted SNI (server name identification), as well as either DNS over HTTPs or DNS over TLS, and also SMTP MTA-STS as an extension of STARTTLS for email security.
During the podcast, Jeremy and Mike set the table for this discussion by exploring some of the early challenges businesses faced in terms of cost and expertise in deploying SSL. They also describe how that led to industry collaboration between a number of important players to develop and grow Let’s Encrypt, a Certificate Authority distributing free SSL certificates. Their discussion also touches on how mainstream awareness of surveillance post-Snowden is driving adoption of encryption technology.
Finally, Jeremy and Mike discuss how and why email, server, and DNS encryption are the next hills to climb in this effort to secure all internet traffic.
The Collective Intelligence Podcast, presented by Flashpoint and hosted by Editorial Director Mike Mimoso, features regular interviews with a diverse set of industry experts and Flashpoint analysts on the latest information security news and industry trends.
Michael Mimoso brings over a decade of experience in IT security news reporting to Flashpoint. As Editorial Director, he collaborates with marketing, analyst, and leadership teams to share the company’s story. Prior to Flashpoint, Mike was as an Editor of Threatpost, where he covered security issues and cybercrime affecting businesses and end-users.
Prior to joining Threatpost, Mike was Editorial Director of the Security Media Group at TechTarget and Editor of Information Security magazine where he won several ASBPE national and regional writing awards. In addition, Information Security was a two-time finalist for national magazine of the year. He has been writing for business-to-business IT publications for 11 years, with a primary focus on information security.
Earlier in his career, Mike was an editor and reporter at several Boston-area newspapers. He holds a bachelor’s degree from Stonehill College in North Easton, Massachusetts.