Fabio Pietrosanti (naif):
> I know that this kind of argument attract crypto-trolling ("Javascript
> encryption" and "Unauthenticated encryption" and "Opportunistic
> encryption")I hope we can put that aside. > but i think that it's worth discussing because it could be > a revolutionary approach to challenge massive wiretapping. Sure! It would higher the bar. Require active attacks. Passive eavesdropping would no longer do it. Therefore we should definitively go for it. Selling "we must actively attack all traffic so we can read it" to citizen seems much more difficult than selling "we just passively eavesdrop on what is unencrypted". > What does various people think about this approach? What about tcpcrypt? It does all that? Its concept should be fine? Now sure about its implementation. Efforts stalled? Care to contact them? tcpcrypt could encrypt any tcp, not just browser/web. I would be even more happy about IPcrypt, opportunistic unauthenticated encryption built into the Linux kernel. [1] http://tcpcrypt.org/ [2] https://en.wikipedia.org/wiki/Tcpcrypt -- Liberationtech is public & archives are searchable on Google. Violations of list guidelines will get you moderated: https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, change to digest, or change password by emailing moderator at [email protected].
