Answer the question
In order to leave comments, you need to log in
O
O
Onotolius2018-01-30 15:50:05
Onotolius, 2018-01-30 15:50:05
Is data encryption with https a myth?
Hello bandits.
I noticed a long time ago that https traffic is easily decrypted and read by a simple Fiddler4.
I wonder what prevents an attacker from using the same Fiddler4 and reading my passwords and correspondence ..
Maybe the whole importance of https is greatly exaggerated?
Today I decided to check how things are going with telegram .. Still, they trumpet that he is super anonymous. And indeed, Fiddler does not decrypt its traffic, everything there is "crowned" and unreadable. This means that encryption is carried out by software methods other than https.
Is it worth it for us to pay money for the protection of our data, which as such is absent? I'm already silent about connection delays 10-500 vkc
Maybe I didn’t understand something, correct me, but it seems to me that it’s not normal when secure traffic is decrypted by simple sniffers and they still ask for money for it.
2 answer(s)
@petermzg
@jenki
P
Peter, 2018-01-30 @petermzg
You may have noticed that Fiddler asks whether to replace the certificate for https with your own.
S
Stanislav Bodrov, 2018-01-30 @jenki
This protocol allows the use of self-signed certificates. Generate your pair on elliptic curves, slip it to the server and client, try to break it again.
Similar questions
A
Alexander Lalikin2015-05-29 08:35:38
What method to encrypt passwords for storage in the database?
4Reply
F
M
L
D
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question