[liberationtech] Encrypted Pastebins: Attack Vectors against ezcrypt.it and 0bin.net
Tony Arcieri
bascule at gmail.com
Wed Jan 15 11:11:29 PST 2014
On Wed, Jan 15, 2014 at 4:34 AM, Eduardo Robles Elvira <edulix at gmail.com>wrote:
> This is what I call the server-in-the-middle attack. My proposal would
> be to do something like SSL for end-to-end crypto. To have secure
> isolated reusable web-components so that you don't need to trust the
> web site, but the web browser. I proposed this some time ago:
>
> http://edulix.wordpress.com/2012/01/08/the-server-in-the-middle-problem-and-solution/
Nice, sounds like what I have in mind for the Cryptosphere ;)
--
Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20140115/3049aacb/attachment.html>
More information about the liberationtech
mailing list