HTTPS interception in Nokia's mobile browser
Posted Jan 29, 2013 13:16 UTC (Tue) by khim
In reply to: HTTPS interception in Nokia's mobile browser
Parent article: HTTPS interception in Nokia's mobile browser
The point is, there is zero technical reason https could not follow the same security model as e-mail.
Sure. That's why it works in exactly the same way: HTTPS does not care about intermediate steps. But if text is not signed by a correct key then it refuses to work. The same way as PGP and S/MIME always worked.
The only difference is that mail is send-and-forget thus it's harder to enforce S/MIME and/or PGP (if you refuse to read unencrypted mail then you often lose the important info). But still a lot of confidential docs where I work are sent encrypted so what's the difference between mail and HTTPS?
to post comments)