On Mon, Mar 24, 2014 at 2:03 PM, David Berry <[email protected]> wrote:
> It looks like an interesting project and the idea of a database of public > keys is definitely a good one... or is it? > The entire concept is untenable: http://tonyarcieri.com/whats-wrong-with-webcrypto They admit as much throughout the site, yet they built it anyway for some reason? They are not taking security seriously. In addition, they are not doing secure identity verification. While I think they're doing a great job drumming up interest in cryptography, I'm afraid they're leading users down the wrong path. It's like encouraging people to put locks on their doors, but giving them locks made out of silly putty. -- Tony Arcieri
-- Liberationtech is public & archives are searchable on Google. Violations of list guidelines will get you moderated: https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, change to digest, or change password by emailing moderator at [email protected].
