To add to that, I think the interesting point was brought up earlier anyways -- this doesn't stop midstream intercepts from catching traffic in transmission. You can have a secure endpoint, but if the email has to traverse, it's open to being sniffed.