(citizenlab.ca)

157 points lladnar | 1 comments | 16 Oct 24 20:06 UTC | HN request time: 0.194s | source

Show context

mouse_ ◴[16 Oct 24 20:39 UTC] No.41863619[source]▶

Show me the outcome and I'll show you the incentive.

Hint: backdoors

I wouldn't trust any federally approved encryption. From any country.

I wouldn't trust them, but I WOULD use them, given no other choice to reach the users I'm after. But always assume zero trust. With any computer thing, zero trust. Computer systems and those who orchestrate them are sneaky little devils.

replies(3): >>41863637 #>>41863795 #>>41864233 #

1. creatonez ◴[16 Oct 24 20:58 UTC] No.41863795[source]▶

>>41863619 #

And even if it isn't screwed up by active malice... don't be surprised if it's screwed up by pure incompetence. South Korea's internet is still plagued by government-approved encryption standards, which, due to the deprecation of ActiveX, sometimes require installing institution-specific cryptography software to tunnel connections through a local HTTP server so it can be encrypted outside of the web browser - https://palant.info/2023/01/02/south-koreas-online-security-...

↑

Should We Chat, Too? Security Analysis of WeChat's Mmtls Encryption Protocol