I was talking with someone VC-ish, about my frustration with all the endpoint hardware and communication software being hopelessly insecure for various real threat models.
But that, even if I somehow managed to pull off a successful superior solution, as a startup or an open source/hardware project, I didn't want to see all the worst criminals flock to my service.
Also, I didn't want to be in an adversarial relationship with my own government at times, nor to secretly compromise the solution.
(Probably the compromise-compromise I'd choose would be proactive: I'd have to backdoor for my government from the start, and publicly disclose that there's a backdoor, so I'm not misrepresenting to my users. Which would mean dramatically less adoption, a lot of privacy&secury people cursing it/me, and eventually the backdoor would also be exploited by parties other than the intended.)
And also, I don't have the stomach for adversaries that would include foreign state dirty-tricks agencies.
Most ostensible security solutions on the market are obviously weak, or just plain BS. The ones that might not be, I don't see how they don't run into the same barriers.
News flash: they do. They just see their users as $$$ or don't give a damn. And their users don't care/don't know because they just want piece of mind or legal risk transferrance.
Legally speaking, if you get right down to it, privacy is de facto illegalized, and the old aphorism about "if you make a country where witchhunts are illegal, the population will be 3 civilly minded libertarians, and the rest witches" applies.
Abandon all hope, ye who enter here; or just realize your dream is effectively only realizable for the exact type of people you don't trust to have it. Then find another line of work.
But that, even if I somehow managed to pull off a successful superior solution, as a startup or an open source/hardware project, I didn't want to see all the worst criminals flock to my service.
Also, I didn't want to be in an adversarial relationship with my own government at times, nor to secretly compromise the solution.
(Probably the compromise-compromise I'd choose would be proactive: I'd have to backdoor for my government from the start, and publicly disclose that there's a backdoor, so I'm not misrepresenting to my users. Which would mean dramatically less adoption, a lot of privacy&secury people cursing it/me, and eventually the backdoor would also be exploited by parties other than the intended.)
And also, I don't have the stomach for adversaries that would include foreign state dirty-tricks agencies.
Most ostensible security solutions on the market are obviously weak, or just plain BS. The ones that might not be, I don't see how they don't run into the same barriers.