If you care for a secure communication, just SSH your E-Mail client connection. Why need a standard? As always in life, if you are un-knowledgeable of something, you lose. In times where everyone posts everything on Facebook, why even bother.
Look at it this way: Do you know on what basis the RSA Cypher works? It is a relative simple mathematical property but I bet only a fraction of people understand it and still everyone trusts in it to be secure. My point is that people are afraid of things they don't fully understand (e.g. what personal privacy really means) and trust in things they do not understand (Internet security). They are clueless and as long as there is someone who understands how to use that weakness, you will see social exploitation.
Let me give you an example admin:admin
No one has a clue: The guy who installed it, the people who run, the people that are being watched.
Bookmarks