Re: How HTTP 2.0 mandatory security will actually reduce my personal security

What is your threat model?


On Thu, Nov 14, 2013 at 10:26 PM, Nicolas Mailhot <> wrote:

> Le Ven 15 novembre 2013 06:38, Roberto Peon a écrit :
> > Sure, there is most definitely a tradeoff between ensuring privacy across
> > the open net and being able to look into all streams.
> > What I don't see, however, is how you will ever have enough time to
> > understand all of the interactions which are ongoing on your network--
> > steganography is just too easy, even for plaintext.
> You assume all attacks are the work or elite hackers here to get you.
> The mundane truth is most attacks are the result of developer shortcuts
> put there for convenience without thinking about the side-effects or user
> privacy. They are usually not hidden in any way, all you have to do is
> look (assuming the protocol does no cloak them by default).
> --
> Nicolas Mailhot

Received on Friday, 15 November 2013 06:58:18 UTC