In a major security announcement yesterday, Google revealed that it was automatically encrypting all Gmail messages sent from all users’ devices to its data centers. The HTTPS encryption service prevents most prying eyes from easily accessing your messages.
Starting today, Gmail will always use an encrypted HTTPS connection when you check or send email. Gmail has supported HTTPS since the day it launched, and in 2010 we made HTTPS the default. Today’s change means that no one can listen in on your messages as they go back and forth between you and Gmail’s servers—no matter if you’re using public WiFi or logging in from your computer, phone or tablet.
In addition, every single email message you send or receive—100% of them—is encrypted while moving internally. This ensures that your messages are safe not only when they move between you and Gmail’s servers, but also as they move between Google’s data centers—something we made a top priority after last summer’s revelations.
In October of 2013, Edward Snowden revealed that the National Security Agency was tapping into the networks of Google and Yahoo to monitor live activity of users – this encryption would make your emails more secure, assuming that the NSA cannot obtain the encryption keys.
to use HTTPs outside of Gmail and secure connections, users can install HTTPs Everywhere, a browser extension created by the Electronic Frontier Foundation and the Tor Project.