Re: How HTTP 2.0 mandatory security will actually reduce my personal security

What is your threat model?

-=R


On Thu, Nov 14, 2013 at 10:26 PM, Nicolas Mailhot <
nicolas.mailhot@laposte.net> wrote:

>
> Le Ven 15 novembre 2013 06:38, Roberto Peon a écrit :
>
> > Sure, there is most definitely a tradeoff between ensuring privacy across
> > the open net and being able to look into all streams.
> > What I don't see, however, is how you will ever have enough time to
> > understand all of the interactions which are ongoing on your network--
> > steganography is just too easy, even for plaintext.
>
> You assume all attacks are the work or elite hackers here to get you.
>
> The mundane truth is most attacks are the result of developer shortcuts
> put there for convenience without thinking about the side-effects or user
> privacy. They are usually not hidden in any way, all you have to do is
> look (assuming the protocol does no cloak them by default).
>
> --
> Nicolas Mailhot
>
>

Received on Friday, 15 November 2013 06:58:18 UTC