| Lets take our privacy back with encryption Alright it seems like these guys wont leave our personal rights alone, this is the invasion of privacy and we need to start developing more encrypted protocols to keep these nosy people out of our business. Start encrypting EVERY BIT. |
|
| said by Underplay:Alright it seems like these guys wont leave our personal rights alone, this is the invasion of privacy and we need to start developing more encrypted protocols to keep these nosy people out of our business. Start encrypting EVERY BIT. I wish. But, for whatever reason we created SSL to be 'vulnerable'. Even though I don't see it as such, every browser maker makes self signed certs as a virus.
Until we can embrace self-signed SSL or make 'ESSL' (enhanced SSL), our data wont be encrypted. There are papers written on how insecure self-signed SSL certs are, but what is SSL's real purpose? To provide an encryption between 2 parties.
SSL is 'broken', any bad guy can buy a certificate pretending to be from a certain domain. So, even CA signed certs are vulnerable from MITM attacks. |
|
| What we need is a standardized encryption protocol for all protocol's. It should be as easy as cake to just include a library and not have to worry about different encryptions being used...Although it would be hard. |
|
 jsz0Premium
join:2008-01-23
Jewett City, CT | reply to Underplay
It won't really help much. You can presently encrypt just about any traffic (including BitTorrent) but ultimately in the case of BT you need peers to exchange data with and those peers need a way of finding each other. As long as that is the case the RIAA/MPAA/etc can simply signup for the site just like anyone else and get the data they need. |
|
