On 26/07/2014 16:03 pm, Lodewijk andré de la porte wrote: > http://matasano.com/articles/javascript-cryptography/ ... > Somebody, please, give me something to say against people that claim JS > client side crypto can just never work!
It's like opportunistic security; it's the best you get in a crappy world for free. The author acknowledges that SSL/TLS is expensive and messy, the alternative to that for most purposes is no security at all. This gives something in the middle. It specifically defeats mass surveillance, that which used to be known as passive eavesdropping in the trade before the lingo reset of recent times. This is a valuable thing. iang _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
