|
|
|
|
|
|
by Ginden
1688 days ago
|
|
|
> They wouldn't need to break TLS 1.3 if they have access to root certificates, they could use them to perform MitM attacks. It's trivially easy and almost undetectable for any nation-state to perform targeted MitM against HTTPS. It wouldn't be legally possible in most of jurisdictions, but Saudi Arabia isn't exactly "rule of law" country. Uzbekistan tried, because they wanted zero-risk mass surveillance. |
|
|