Hacker News new | past | comments | ask | show | jobs | submit login

But getting an employee to hand over the private key and giving him a gag order afterwards is an option of course.



https://en.wikipedia.org/wiki/Perfect_forward_secrecy

https://en.wikipedia.org/wiki/ECDHE

Google is using it, a few other sites, too, though they are in the minority. OpenSSL supports it since version 1.0.0 that was released in March 2010.


True, but they would have to do this for every single web server they would want to collect information from. Not impossible, but it'd be a lot of work.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: