W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2013

Re: HTTPS, proxying, and all that...

From: Yoav Nir <ynir@checkpoint.com>
Date: Fri, 11 Jan 2013 20:29:04 +0000
To: Poul-Henning Kamp <phk@phk.freebsd.dk>
CC: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Ilya Grigorik <ilya@igvita.com>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <4613980CFC78314ABFD7F85CC302772111980867@IL-EX10.ad.checkpoint.com>

On Jan 11, 2013, at 9:57 PM, Poul-Henning Kamp <phk@phk.freebsd.dk>
 wrote:

> 
>> We can and are working on ways to allow for better detection
>> of such MITM attacks, but that's different.
> 
> Yes, fine, cool.
> 
> But how about allowing for them, for instance where they are mandated
> by law ?
> 
> (Pornfilters at schools, inmates communications in high security
> prisons.  Parental control filters in homes.)

Where were you when we proposed http://tools.ietf.org/html/draft-mcgrew-tls-proxy-server-01 ?

Anyway, in all those cases, wouldn't spyware on the (school-, parent-, or prison-provided) computer do the trick just as well as trusting them to go through a particular proxy?

Yoav
Received on Friday, 11 January 2013 20:29:36 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 11 January 2013 20:29:39 GMT