|
|
|
|
|
|
by read
4387 days ago
|
|
|
He means crypto from servers can't be trusted. You need something better. You need crypto running in a browser extension. If I understood your article correctly, when you (bren2013) refer to in-browser crypto you mean crypto code is delivered from the server. But that's not the only in-browser crypto you can get. You can also get in-browser crypto delivered from a browser extension. Under this second definition of in-browser crypto, the following sentence in the article isn't accurate: there is nothing in-browser crypto can do to defend against active adversaries. (I admit I didn't read the article thoroughly.) |
|
|