|
|
|
|
|
|
by lixtra
2652 days ago
|
|
|
You get the hashes you trust from the counterparty that you trust. I.e. your bank could print it everywhere. It’s not less obvious than just trusting your browser vendor. EDIT: Also note that in the presented approach you can still trust some root CAs. It’s just that the user has to do it explicitly. |
|
|