We now have a better idea what the NSA can and can't do. It seems they have ways to compromise endpoints, and have poisoned algorithms and implementation they have a hand in. GPG is the old standby. NaCl is a popular outsider. I do not know, at this time, however, of any easy integration of NaCl into an email client. Do any of you have thoughts on how to go about encryption for emails and other communications in the modern era?
Let's be clear...there is precisely nothing that has been revealed that indicates that the NSA has some ahead of the curve ability to compromise underlying cryptographic technology (see: <a href="http://www.schneier.com/blog/archives/2013/09/the_nsa_is_brea.html" rel="nofollow">http://www.schneier.com/blog/archives/2013/09/the_nsa_is_bre...</a>). This is social engineering...they got the companies involved to backdoor their own products. And if they own your end points...well...<p>All I can think of is only use open code on open hardware (including the disk drives) done by folks whom the US or other cooperating governments don't have leverage against (psst...no, the answer is not OpenBSD). I don't think that exists.