On Sat, May 07, 2016 at 08:25:29AM -0400, Matthew Gillen wrote: > On 5/4/2016 5:37 PM, Kent Borg wrote: > > -kb, the Kent who admits he doesn't know how https works through Akamai > > and the like. > > It doesn't. Akamai is a TLS termination point. They have the private > keys of any domain they are proxying for, so they can act as the TLS > endpoint. Once your connection gets into their system, it is up to > Akamai to protect it and you have no visibility into whether your data > stays encrypted in transit within Akamai.
Except that such things have industry standards, like PCI, which require regular auditing. https://www.akamai.com/us/en/resources/pci-dss-compliance.jsp -- Derek D. Martin http://www.pizzashack.org/ GPG Key ID: 0xDFBEAD02 -=-=-=-=- This message is posted from an invalid address. Replying to it will result in undeliverable mail due to spam prevention. Sorry for the inconvenience. _______________________________________________ Discuss mailing list [email protected] http://lists.blu.org/mailman/listinfo/discuss
