[tbb-bugs] #30271 [Applications/Tor Browser]: Validate untrusted TLS certificates to ensure Exits aren't performing an attack
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Apr 23 14:34:37 UTC 2019
#30271: Validate untrusted TLS certificates to ensure Exits aren't performing an
attack
------------------------------------------+----------------------
Reporter: tom | Owner: tbb-team
Type: enhancement | Status: new
Priority: Low | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
------------------------------------------+----------------------
As described in https://gitweb.torproject.org/tor-browser-
spec.git/tree/proposals/103-selfsigned-user-safety.txt - we can validate
untrusted certificates via a separate circuit to ensure the exit node is
not performing a TLS MITM attack on end users.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/30271>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list