oss-sec mailing list archives

Re: On sanctioned MITMs

From: Lyndon Nerenberg <lyndon () orthanc ca>
Date: Sat, 2 May 2015 16:03:05 -0700


On May 2, 2015, at 3:25 PM, mancha <mancha1 () zoho com> wrote:

As you said, lots of people are interested in ways of achieving E2E
security with intermediation - precisely because there is recognition
current TLS interposition models are not satisfactory. 

My specific interest is how OSS projects (e.g. browsers, TLS stacks,
etc.) can address security issues that arise from SSL/TLS interposition.
Also of interest is leveraging the intersection of infosec/oss/crypto to
develop related innovations (e.g. interposition that coexists with
uncompromised E2E security).


Are you (or anyone else out there) aware of a bibliography of research into this?  Or groups actively looking at it?  
This is of more than passive interest to me.

--lyndon

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

Current thread:

On sanctioned MITMs mancha (May 01)
- Re: On sanctioned MITMs Hanno Böck (May 01)
- Re: On sanctioned MITMs Kurt Seifried (May 01)
  - Re: On sanctioned MITMs Dean Pierce (May 01)
  - Re: On sanctioned MITMs mancha (May 01)
    - Re: On sanctioned MITMs Lyndon Nerenberg (May 01)
    - Re: On sanctioned MITMs mancha (May 02)
    - Re: On sanctioned MITMs Lyndon Nerenberg (May 02)
    - Re: On sanctioned MITMs Joe Malcolm (May 04)
    - Re: On sanctioned MITMs Eddie Chapman (May 02)
- Re: On sanctioned MITMs Solar Designer (May 01)
  - Re: On sanctioned MITMs mancha (May 01)