On Mon, Feb 1, 2016 at 11:16 PM, Swift Griggs wrote:
> On Mon, 1 Feb 2016, Hal Murray wrote:
>
>> Without something like a chain-of-trust you don't know that your encrypted
>> connection is going to the right site.
>>
>
> I understand it's design purpose, but I disagree with where the design
> pu
swiftgri...@gmail.com said:
> Well, the way I understand it, (and I'm probably wrong) but a
> man-in-the-middle would have to be able to break Diffie Hellman
How did you get your banks public key? Without a chain-of-trust you have to
get it on your own and the man in the middle has a good chanc
On Mon, 1 Feb 2016, Hal Murray wrote:
Without something like a chain-of-trust you don't know that your encrypted
connection is going to the right site.
I understand it's design purpose, but I disagree with where the design
puts that trust. When it comes down to brass-tacks, do you trust Verisi