It would be useful to focus on the short term problem and solution; the coming quantum computer factoring factory issue which will render large-prime crypto less useful is still on the horizon.
The big threat is lack of basic HTTPS everywhere. The second is site key security (ensuring the NSA never gets your private keys). The third is perfect forward security with rapid key rotation. George William Herbert Sent from my iPhone On Jul 31, 2013, at 2:45 PM, Ryan Lane <[email protected]> wrote: > On Wednesday, July 31, 2013, Ryan Lane wrote: > >> On Wed, Jul 31, 2013 at 1:06 PM, David Gerard >> <[email protected]<javascript:_e({}, 'cvml', '[email protected]');> >>> wrote: >> >>> Oh - if anyone can authoritatively compose a WMF blog post on the >>> state of the move to SSL (the move to logins and what happened there, >>> the NSA slide, ongoing issues like browsers in China, etc), that would >>> probably be a useful thing :-) >>> >>> >> I'll be posting blog posts each step of the way as we move to SSL. We have >> plans on SSL for anons by default, but there's no official roadmap for >> doing so. >> >> > A follow up: I've started writing a blog post about this and hope to have > something postable by tomorrow. > > - Ryan > _______________________________________________ > Wikitech-l mailing list > [email protected] > https://lists.wikimedia.org/mailman/listinfo/wikitech-l _______________________________________________ Wikitech-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikitech-l
