[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Applicability of signed messages as proof of sending

To: ietf-openpgp@xxxxxxx
Subject: Re: Applicability of signed messages as proof of sending
From: Konrad Rosenbaum <konrad@xxxxxxxxx>
Date: Mon, 15 Aug 2005 07:38:58 +0200
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
References: <> <> <>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx
User-agent: KMail/1.8

On Sunday 14 August 2005 19:00, Ian G wrote:
> Ben Laurie wrote:
> > On wired networks they are easy for the network admins to mount. The
> > practice is sufficiently commonplace that many corps have their own CA
> > keys in employees' browsers so they can forge X509 certs.
>
> Hmmm.  Is that the sole reason?  Or one of many reasons?
>
> And how often do they conduct this attack?

There are web-proxies on the market which do this in order to be able to 
track HTTPS connections of employees. This is illegal or at least of 
doubtful legality in most European countries, so I can't provide you with 
examples of companies who do this.

	Konrad

Attachment: pgp00134.pgp
Description: PGP signature

References:
- Draft Minutes of OpenPGP
  - From: Derek Atkins
- Re: Applicability of signed messages as proof of sending
  - From: Ben Laurie
- Re: Applicability of signed messages as proof of sending
  - From: Ian G

Prev by Date: Re: Encrypt then sign insecure?
Next by Date: Re: "The OpenPGP mail and news header" extenssion
Previous by thread: Re: Applicability of signed messages as proof of sending
Next by thread: Re: Draft Minutes of OpenPGP
Index(es):
- Date
- Thread