[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] How evil is TLS cert collection?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] How evil is TLS cert collection?
From: Chris Palmer <chris@xxxxxxx>
Date: Mon, 21 Mar 2011 14:09:19 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 21 Mar 2011 17:10:33 -0400
In-reply-to: <20110321030544.GE25753@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20110321005806.GA15548@xxxxxxxxxx> <AANLkTikFNLWruSHwOKrgk4ZyAN9tfnkr9+Zb0PUVRqOm@xxxxxxxxxxxxxx> <20110321030544.GE25753@xxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.14) Gecko/20110223 Lightning/1.0b2 Thunderbird/3.1.8

On 03/20/2011 08:05 PM, Mike Perry wrote:

>> if EFF was presented with a national security letter or other legal
>> demand under seal demanding the existence of a given certificate not
>> be exposed, would they be bound to not present a MITM alert for that
>> cert?
> 
> Leaving this for pde and/or Seth.

It's a question for our legal team. I'll ask them.

The main thing is that this feature is not intended for true real-time
MITM alerts. It's for research and study, and I hesitate to overload it
for MITM detection for all sorts of technical reasons, including those
Mike has raised.

-- 
Chris Palmer
Technology Director, Electronic Frontier Foundation
https://www.eff.org/code
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] How evil is TLS cert collection?
  - From: grarpamp

References:
- [tor-talk] How evil is TLS cert collection?
  - From: Mike Perry
- Re: [tor-talk] How evil is TLS cert collection?
  - From: coderman
- Re: [tor-talk] How evil is TLS cert collection?
  - From: Mike Perry

Prev by Author: [tor-talk] New Tor paper: One Bad Apple Spoils the Bunch
Next by Author: [tor-talk] Is Ubuntu JAUNTY of tor version end of life?
Previous by thread: Re: [tor-talk] How evil is TLS cert collection?
Next by thread: Re: [tor-talk] How evil is TLS cert collection?
Index(es):
- Author
- Thread