Y
Hacker News
new
|
ask
|
show
|
jobs
by
tptacek
3070 days ago
No. You need to be securely using TLS anyways. Signed requests are hard to get right (Google "canonicalization vulnerabilities"). That's not a good tradeoff.