BITS Security <bitssecur...@fsroundtable.org> writes: > Outbound TLS connections require MITM for decryption. Inbound or > internal TLS connections can be decrypted with an RSA private key > under TLS 1.2.
It would be unwise to build a security or regulatory structure on the principle that MITM will always be possible. This is especially true for the kinds of popular and frequently attacked services for which DLP might be important, like Facebook, Twitter, Google, Apple, Dropbox, Github. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls