November 20, 2013, 6:44 PM — In light of the ever-growing, disturbing revelations about the NSA's mass surveillance program, it's good to know how the web services we're using protect our information. The Electronic Frontier Foundation has surveyed and analyzed several major service providers--from Amazon to Yahoo!--to see if them have implemented strong encryption.
The good news is, many of them have adopted encryption standards that make backdoor surveillance more challenging for the government, protecting user data from being seized without a warrant. Four companies--Dropbox, Google, Sonic.net, and SpiderOak--implement all five encryption measures.
These include: encryption of data center links, HTTPS encryption, use of HTTPS Strict, forward secrecy, and STARTTLS. Respectively, these measures: encrypt user data when it's sent between cloud servers and data centers, encrypt the communication between the user's computer and the website, insist on a persistent encryption, protect encryption keys, and encrypt communications between email servers. You'll want to head over to the EFF's web report for more details and notes about the study.
Here's the full chart:
In the growing battle for our privacy, it's good to know who has our backs.
Read more of Melanie Pinola’s Tech IT Out blog and follow the latest IT news at ITworld. Follow Melanie on Twitter at @melaniepinola. For the latest IT news, analysis and how-tos, follow ITworld on Twitter and Facebook.