Defense? I think you misread what I stated. Sure, many encryption standards and certifications were created in the 90s and 00s. That doesn't mean all of them stood the test of time - lest we hash out if your perspective is that 3DES is still viable. What I stated was in response to the parent and pointing out, as you quoted:
> "If you're talking about Skype historically (and it seems you are) - then that was before a lot of the strong privacy and encryption conversations were being had in the larger audience of consumers."
Note that I was speaking of "consumers" for the point in time referenced. Many of those consumers were not aware of why they should care about privacy or encryption, you seem to be conflating industry and consumers - of which I was making a much more specific point. This point is obvious when you look at the trend of total encrypted traffic volume which was not the majority in the 90s or 2000s compared to today - of which it is. For reference (and to put this in perspective) Facebook didn't start rolling out required encryption until 2012 [0] - less than 10 years ago. Today most of us couldn't fathom logging into a service that wasn't encrypted. So, while I feel you took my statement out of context - I'm also pointing out that consumer encryption wasn't generally taken seriously in consumer oriented services until into the 2010s.
> "If you're talking about Skype historically (and it seems you are) - then that was before a lot of the strong privacy and encryption conversations were being had in the larger audience of consumers."
Note that I was speaking of "consumers" for the point in time referenced. Many of those consumers were not aware of why they should care about privacy or encryption, you seem to be conflating industry and consumers - of which I was making a much more specific point. This point is obvious when you look at the trend of total encrypted traffic volume which was not the majority in the 90s or 2000s compared to today - of which it is. For reference (and to put this in perspective) Facebook didn't start rolling out required encryption until 2012 [0] - less than 10 years ago. Today most of us couldn't fathom logging into a service that wasn't encrypted. So, while I feel you took my statement out of context - I'm also pointing out that consumer encryption wasn't generally taken seriously in consumer oriented services until into the 2010s.
[0] https://techcrunch.com/2012/11/18/facebook-https/