|
|
|
|
|
|
by tveita
4368 days ago
|
|
|
Digital signatures were not invented with Bitcoin. TLS supports client certificates perfectly well, and your browser probably supports them. This scheme also has a lot of beginner-level oversights, IMO. It doesn't delimit the URI from the body, and it doesn't protect the HTTP method itself nor any potentially important headers. This makes me suspect that no cryptographers laid their eyes on this before the announcement. |
|
|
Client certificates certainly work, but most people wouldn't see them in their browser, let alone seek them out.