None of those things actually thwarts NSA surveillance, because most of the NSA collection methods occur inside the datacenter. Based on one slide, inside Google's data centers.
All the client side TLS improvements in the world don't change the fact that Google -- even just through Google Analytics and Gmail -- is set up to collect everything that everyone does online.
In fact, all of these developments (while super awesome, and not by themselves bad!) are entirely consistent with the goal of giving surveillance access to US interests, but not to anyone else.
My understanding was that the majority of the access was by tapping the private network connections between google, yahoo etc's colocs, at points outside the coloc. This has prompted these companies to start encrypting data accross links they would previously consider secure. Another task should be listing all companies known to be activly working against thier own paying customers, like att and cable and wireless/mercury. Which could form the basis for a consumer boycot. Hit thier partners, so that cost of doing that business becomes too great.
All the client side TLS improvements in the world don't change the fact that Google -- even just through Google Analytics and Gmail -- is set up to collect everything that everyone does online.
In fact, all of these developments (while super awesome, and not by themselves bad!) are entirely consistent with the goal of giving surveillance access to US interests, but not to anyone else.