Re: How HTTP 2.0 mandatory security will actually reduce my personal security

Le Ven 15 novembre 2013 07:57, Roberto Peon a écrit :
> What is your threat model?

The threat model is
1. developer that makes information leak trough incompetence, laziness,
sloppiness or greed (cf all the info your average android app wants to
2. attacker that does not need to penetrate target anymore can just
collect the leaked info at endpoints (see also: Snowden)
3. protocol that prevents anyone doing anything about it by default

Nicolas Mailhot

Received on Friday, 15 November 2013 07:16:33 UTC