Gmail has now set an option to encrypt all the communication between a browser and Google’s Servers by default which can make this email service difficult to hack and much ‘slower’ to load.
If you sign into your Gmail account through an unsecured Internet connection like a non encrypted network then your Google account might be much more vulnerable to hijacking. Before users could encrypt communication between Gmail servers by adding a ‘https’ instead of normal ‘http’ that is https://mail.google.com.The encryption comes through use of HTTPS, a secure version of the HTTP protocol that governs how Web browsers fetch information from servers.We have discussed before about how a user can hijack sessions in almost any cookie-based web application and also provided details on how Graham successfully hacked Gmail,Hotmail and Yahoo Mail.
“We use https to protect your password every time you log into Gmail, but we don’t use https once you’re in your mail unless you ask for it (by visiting https://mail.google.com rather than http://mail.google.com). Why not? Because the downside is that https can make your mail slower. Your computer has to do extra work to decrypt all that data, and encrypted data doesn’t travel across the internet as efficiently as unencrypted data. That’s why we leave the choice up to you.”-Gmail Blog
This doesn’t mean that Google will encrypt all your ‘emails’ like GPG or S/MIME email encryption but will encrypt the browser sessions with Gmail over the secure ‘https’.
Comments on this entry are closed.
Simple ways which contribute to prevent identity and password theft, thus preventing you emails from being hacked.
1. Changing your passwords every week or fortnight.
2. Use complex passwords (more than 10 characters).
3. Use different passwords for all your accounts
4. Use Award Winning Exquipass Password manager to manage, remember and store your complex passwords safely. Here’s Exquipass Info link:
http://www.exquisysltd.com/productinfo.php?p=DA01EX
It can be Downloaded for FREE at:
http://www.exquisysltd.com/download.php?p=DA01EX
I suggest you go for the registered version at:
http://www.exquisysltd.com/order.php?p=DA01EX to prevent functionality limits.
For your kind information, Exquipass is an award winner password manager and keeper using strong encryption mechanism to safeguard your account information such as Ids, passwords and secret notes.
This solution is now adopted by millions of people.