|
|
Log in / Subscribe / Register

Perfect Forward Secrecy

Perfect Forward Secrecy

Posted Jul 25, 2013 0:00 UTC (Thu) by tialaramex (subscriber, #21167)
Parent article: Feds put heat on Web firms for master encryption keys (CNET)

Note that HTTPS clients (and other TLS clients) can ask for PFS, although the server is under no obligation to offer that mode, in the same way that you can ask for (but many servers will refuse) the anonymous mode which removes MitM resistance.

If it's revealed that TLS keys were used to unravel past transactions we might see more interest in enabling that feature, both as a client preference (e.g. a Firefox checkbox) and on servers.

to post comments

Perfect Forward Secrecy

Posted Jul 25, 2013 14:02 UTC (Thu) by brunowolff (guest, #71160) [Link]

There was another article about this recently which claimed that the server gets to pick which mode to use from the common set. And that since there is a performance hit to PFS, some servers will choose non-PFS modes if they are available. So on the client side you'd need to only offer up modes that support PFS and then have a backup plan for servers that don't support any PFS modes.


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds