Soon, you may see a warning in Gmail that tells you that an email has arrived over an unencrypted connection.
Gmail HTTPS encryption is already used by itself as a default for connections between servers and browsers, but for quite a long time the standard for e-mails was to leave them unencrypted. The good news is that email security is getting better. “When you send or receive emails with one of these providers, these messages are as open to snoopers as a postcard in the mail”, said Google in a blog post.
Google, the Univeristy of MI and the University of IL conducted a joint project which studied how email security has evolved since 2013, and it was found that 94 percent of messages sent to Gmail can now be authenticated, making it much hard for intruders, phishers to decode message. The warnings are scheduled to roll out in the next few months and are created to push industry-wide adoption of strong encryption and authentication technologies for email. The researchers compared data from December 2013 and October 2015, and in less than two years they saw significant improvements.
The trio discovered regions of the Internet that actively prevent encryption by tampering with requests to initiate SSL connections.
Moreover, the study also states that the percentage of encrypted emails that Gmail users received from non-Gmail ones, during the same course, has increased from 33% to 61%. The company said it would work with partners through the M3AAWG to strengthen security in this area and stem interception.
“Second, we uncovered malicious DNS servers publishing bogus routing information to email servers looking for Gmail“.
“These nefarious servers are like telephone directories that intentionally list misleading phone numbers for a given name”.
Last year, it came up with the password alert feature that warned users when they or someone tried to log in to their account from untrusted site.
Email More Secure Today Than Two Years Ago, Research Suggests