Sorry if I wasn't clear. My question was actually directed at you. You are right in that it would defeat the purpose. As I had stated over PM, mandatory encryption on the site would require either a universal key used to encrypt all messages or the user imports their own key to encrypt it. Either option has risks.