ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [IAB] Mandatory encryption as part of HTTP2

2013-11-18 00:41:32
from [Masataka Ohta] [Permanent Link] 
Theodore Ts'o wrote:


One of the reasons why the bogus Diginotar certificates were detected
was because Google Chrome had a feature called "certificate pinning"
--- which is not a feature normally associated with PKI's.


It has nothing to do with PKI, because security key is directly
shared end to end.

It is a simple public key cryptography without PKI.


It's
unfortunately not all that scalable,


End to end security is inevitably not scalable.


The challenge
is coming up with a solution that *is* more scalable,


There is no royal road in secure communication.

                                        Masataka Ohta
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [IAB] Mandatory encryption as part of HTTP2, Yoav Nir
Next by Date:  Re: [IAB] Mandatory encryption as part of HTTP2, SM
Previous by Thread:  Re: [IAB] Mandatory encryption as part of HTTP2, Masataka Ohta
Next by Thread:  Re: [IAB] Mandatory encryption as part of HTTP2, SM
Indexes:  [Date] [Thread] [Top] [All Lists]