[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] hidden services 2.0 brainstorming

On Thu, Jul 12, 2012 at 10:51 PM, Juenca R <juenca@xxxxxxxxx> wrote:
> ...
> But no one answered the thread I started "CA cert MITM vulnerability in Tor?" so I am curiously to learn this is not a problem in Tor's encryption....

Tor does not use third party CAs like verisign, thawte, etc.

the directory authorities are your CA equivalents, and consensus
protects against singular MITM like that applied to rogue CA
tor-talk mailing list