[Cryptography] Moving forward on improving HTTP's security
John Kelsey
crypto.jmk at gmail.com
Mon Nov 18 18:02:29 EST 2013
It seems like the clever bit of CT is the insight that some actions, like a CA signing a cert, are intended to be public, and so should be forced (via clever crypto) to take place in public. This makes me wonder what other crypto actions should also take place in public, in a way that doesn't permit hiding them from the world.
--John
More information about the cryptography
mailing list