Pgp/gpg (even I can't clearly separate) was a premiere solution to encrypted communications.
How did the implementation get fumbled so hard even InfoSec people dropped it and it's basically unused?
@arichtman Well, as it happens, most people don't have the desire to learn, so the people who know can't use the more secure way.
I think the issue is that communication normally just works as
sender -> recipient
Whereas with PGP/GPG, the recipient has to also do something to receive the message.
Of course, that can be configured away, but that also is work that people don't want to do.
@phil sure, but stuff with utility like this often makes it's way into mainstream programs in a way that's palatable to even casual end users. I'm not following why pgp didn't wind up in regular keyrings or password managers etc. Surely it would have been possible to reduce friction with integration
@arichtman
Yes, but it breaks communication with people who are both important and tech-illiterate, and who don't have the software installed/ updated/ set up yet.
Older family, bosses, friends who don't grok things and just use whatever big tech serves...
Besides, there's interests that are pushing hard against encryption - governments and advertising groups. It's against their interests for us to have privacy.
@phil yes - relevant lately. Pgp has had over 30 years to get integrated. Why hasn't it become the norm?