[tor-talk] hidden services 2.0 brainstorming
coderman
coderman at gmail.com
Mon Jul 16 04:10:10 UTC 2012
On Thu, Jul 12, 2012 at 10:51 PM, Juenca R <juenca at yahoo.com> wrote:
> ...
> But no one answered the thread I started "CA cert MITM vulnerability in Tor?" so I am curiously to learn this is not a problem in Tor's encryption....
Tor does not use third party CAs like verisign, thawte, etc.
the directory authorities are your CA equivalents, and consensus
protects against singular MITM like that applied to rogue CA
situations.
More information about the tor-talk
mailing list