Comment by foxylad
11 years ago
> I can substitute/add/send...
Only if you control any of the infrastructure. If you do, then you can make my life a misery anyway, encrypted or not.
11 years ago
> I can substitute/add/send...
Only if you control any of the infrastructure. If you do, then you can make my life a misery anyway, encrypted or not.
Authenticated and encrypted? That throws a wrench into things.
The authentication provided by the extant PKI system is much weaker than the encryption provided. Any CA can do anything it wants, and browsers trust lots of them.