Convergence
2011-09-09 05:05:17.488701+02 by Dan Lyke 0 comments
In the "Abolish SSL CAs" thread, Shadow pointed to Moxie Marlinspike's presentation at BlackHat USA 2011: SSL And The Future Of Authenticity. I'm only 13 minutes into it, but so far I'm entertained and have learned stuff.
Edit: Holy cow, I had no idea that SSL/HTTPS was so freakin' worthless. I mean, it's not browsing unsecured in a coffee shop, it's almost worse because there's this veneer of security. Yargh..
Moxie's proposal for a solution to the HTTPS CA problem is: Convergence - A Firefox plugin that implements an agile, distributed, and secure strategy for replacing Certificate Authorities.