W3C home > Mailing lists > Public > www-tag@w3.org > January 2015

Re: Draft finding - "Transitioning the Web to HTTPS"

From: Eric J. Bowman <eric@bisonsystems.net>
Date: Thu, 8 Jan 2015 17:38:31 -0700
To: Yves Lafon <ylafon@w3.org>
Cc: Martin Thomson <martin.thomson@gmail.com>, Tim Berners-Lee <timbl@w3.org>, Henri Sivonen <hsivonen@hsivonen.fi>, Public TAG List <www-tag@w3.org>
Message-Id: <20150108173831.6c06e90dc1c16a23f44245d3@bisonsystems.net> 
Yves Lafon wrote:
>
> Eric J. Bowman wrote:
> 
> >
> > My point entirely. Eliminating caching in the name of security,
> > particularly if the result isn't secure, amounts to throwing the
> > baby out with the bathwater. It's a cop-out by the very insitutions
> > folks rely on to solve problems, not come up with cop-outs,
> > regardless of how marketable such cop-outs are to the gullible.
> 
> It depends what "security" means here. Pervasive monitoring (aka 
> sniffing), that should be resolved on a hop-by-hop encryption, or
> MiTM that requires end-to-end encryption.
> 

Crap. I meant privacy, there. Sorry 'bout that, folks.

-Eric
Received on Friday, 9 January 2015 00:38:34 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 22:57:09 UTC