1. 21
  1. 8

    phk confirms a lot of the things I’ve suspected here, and managed to do so without sounding like a conspiracy theorist.

    One thing I think he’s wrong about is the privacy aspect:

    1. Maybe your local newspaper has no interest in hiding that they’re publishing information about how to escape an abusive spouse, but you might have an interest in your router not being able to report that information to your abusive spouse.
    2. If you MITM your employees' traffic with self-signed certificates, they probably can’t do anything about it, except maybe use Tor. If you MITM your Tor exit node in plaintext, the users using it can’t detect that you’re doing it. But if you MITM your Tor exit node with self-signed certificates, you will be caught and added to badexit, and people will stop routing their traffic through you.
    3. Similarly, the capacity/speed problems he cites for encryption are a smallish expense for Google, insignificant for a personal server, and possibly a showstopper for Golden Shield. This seems like an improvement to me.

    So I think opportunistic encryption is hugely valuable.

    1. 2

      Possibly a showstopper? Didn’t the latest revelations reveal that the NSA would go as far to break in to private systems to steal secret key material, if necessary?

      Also, I agree that the article was very well written.

      1. 1

        The best indications we have are that the NSA limits their breakins to systems that are particular targets, but of course e.g. spammers and botnet merchants do not. Still, that tactic won’t succeed against all sites — perhaps not even against many — and it is of limited usefulness for things like Golden Shield, since once a single Chinese user reports it, the time needed for Chrome to start pinning a new CA for gmail.com is going to be measured in weeks or days.

    2. 1

      PHK has a very well written article, indeed.

      HTTP is supposed to have had opportunistic encryption, as per RFC 7258 - Pervasive Monitoring Is an Attack and Minimal Unauthenticated Encryption (MUE) for HTTP/2, but it looks like the corporate overlords don’t really understand why it is a problem for the independent one-man projects to acquire and update certificates every year, for every little site.

      As per a recent conversation with Ilya, Google’s answer to the cost and/or maintenance issues of https — just use CloudFlare! Because letting one single party do MITM for the entire internet is so sane and secure, right?

      1. 1

        Hopefully the Let’s Encrypt project works out. It could be a very useful way to solve the maintenance issues of HTTPS.