|
|
|
|
|
|
by rakoo
4608 days ago
|
|
|
Perspectives/Convergence really is a great system, but it unfortunately still has several problems: - it completely leaks your browsing history: you basically ask a notary "what's the certificate you see for kinkyneighbors.com?". Convergence addresses this, though
- it requires network-heavy intermediaries for all the browsing of all the people around the world.
- it still doesn't solve authenticity: an attacker could very well be controlling all connections arriving at your house, or leaving the target's server, and fool everyone Convergence/Perspectives should be coupled with certificate pinning, aka storing _really_ trusted authorities (ie verified by hand) on your computer. Guess what ? [Moxie's next project is just that [0] (For anyone curious, I highly recommend Moxie's talk [1] about Convergence, it does a great job at explaining what's the problem, what's Convergence and how it can solve at least part of it) [0] http://tack.io/ [1] http://www.youtube.com/watch?v=Z7Wl2FW2TcA |
|
|