6 Aug
2014
6 Aug
'14
9:44 a.m.
On Aug 6, 2014, at 12:35 PM, der Mouse <mouse at rodents-montreal.org> wrote:
...
Interesting point. It would be a worthwhile exercise to extend TLS to work with the PGP
web of trust. That should be straightforward; an existence proof is the fact that IPSec
already has that capability (on paper, at least).
paul
> Why would you not want HTTPS?
...
TLS is also fundamentally broken, in that what security it provides
depends critically on the CA hierarchy, which is laughably broken.