37 security researchers, professionals, privacy advocates and scholars sent a letter to Google CEO Eric Schmidt, and asked him to believe in encryption, all connected to Gmail, Google Docs and Google Calendar default. Google has publicly responded that it was taking into consideration such a situation and will begin testing a small group of users.

Hypertext Transfer Protocol Security (HTTPS) to benefit from referring to HTTP to connect to some form of encryption. The protocol supports all major browsers, because as early as 1994, Google has been implemented to protect sensitive data through Google voice, health, AdSense and AdWords.

The technology can also be used for Gmail, Google Docs and Google Calendar, but it requires users to choose to join, either by adding artificial web site is: https: / / extended to the URL, or, more recently, that this is the default settings of Gmail page. Experts did not say the signing letter to Google, this feature is not enough advertising, nor is it very easy to find the common user.
In addition, they insisted that their performance is enabled by default everyone can be ignored, and security benefits. In support of their demands, they reflect the theory and real life case of attack or abuse can sniff out the intent of personal data through a wireless network unencrypted. Previously showed that the account in the middle of session hijacking attacks to steal cookie-based is also mentioned.

We strongly urge you to follow, so that the financial sector default HTTPS encryption for users of Google e-mail, documents and calendar," the world's leading security and privacy of the idea of writing Schmidt. "With Google's own help page notes, e-mail inbox usually contains sensitive data like bank statements or online log on credentials. Given the enormous threat posed by identity theft, it is vital that Google to take positive measures to protect their users from these risks.

In the latter company's online security blog, a software engineer with Google's privacy policy and security teams to respond to the report public. "We are currently considering whether it is wise to open the HTTPS as the default for all Gmail users. In additional cost of the HTTPS would not stop us. However, we need to have a more complete understanding of the impact of people's experience, analysis, and to ensure that there is no negative impact. In this regard, the company plans to begin testing the "small sample of the different types of Gmail users." It also pointed out that "unless there is a negative impact on user experience, or it, or unrealistic, we intend to default in HTTPS more broadly, to provide to all Gmail users.

On the other hand, through HTTPS slow connection, as compared to HTTP, the need for the data encryption and decryption are also at both ends, resulting in a greater delay. This may be the observable countries, the standard broadband connection, but the problem may cause the user to live in less developed regions, including dial-up remains the only reasonable option.