https - hopefully not too stupid a question

Peter Fairbrother zenadsl6186 at
Sun Jun 17 22:32:46 BST 2012

Chris Salter wrote:
> On 17/06/2012 07:48, Alec Muffett wrote:
>> MITM can sometimes be found out nowadays because a small number of
>> people are running technologies like Convergence
>> (See:  - I consider this a
>> must-see video for the perspective it imparts) which eschews the
>> trust model of Certificate Authorities in favour of a real-time check
>> that the certificate you see for GMail in the UK is the same as is
>> presented in the USA, Canada, Finland, Russia, Brazil…  i.e.: that
>> nobody is lying to you without lying to them as well.
> Many many thanks for that; video definitely a 'must-see'! Well worth 48 
> minutes of anyone's time.

For the first 38 minutes, very much so.

After that he start promoting his solution, which afaict doesn't 
actually work - but he does seem to have a much better grasp of the 
problem than most.

The idea of consulting your chosen authority, rather than those 
hardwired into your web browser,  ... well. maybe. Or maybe not.  It 
does seem attractive.

At least it's different, but is it actually any better?

-- Peter Fairbrother

More information about the ukcrypto mailing list