[tor-dev] Of CA-signed certs and .onion URIs

Jacob Appelbaum jacob at appelbaum.net
Sat Nov 15 02:38:02 UTC 2014

On 11/15/14, Griffin Boyce <griffin at cryptolab.net> wrote:
> Lee wrote:
>>> c) Get .onion IANA reserved
>> It doesn't look like that's going to happen.
>    Yeah. Though the biggest use-case for cert+onion is when trying to
> match a clearnet service to a hidden service -- such as Facebook or
> Erowid.

That is false. Using TLS has many use-cases - one that is critically
important is stronger defense in depth.

All the best,

More information about the tor-dev mailing list