On Thursday, 20 February 2025 13:12:48 CET, Bellebaum, Thomas wrote:
The connection is secure. TLS doesn't defend against compromised devices.
I disagree. While the *network* connection itself may inhibit
the rather technical notions of confidentiality and integrity,
this is not what the average user would consider a "secure
connection". Staying with a browser example, an unsuspecting
user expects to communicate privately with a website.
Yes, TLS alone cannot ensure this, but we are discussing a
format which has the potential to scale attacks on users in a
much easier way, and making awareness of users a requirement
might be a near trivial countermeasure against that
simplification.
if you can't trust the system you're running an application on, you
*definitely* can't trust any network connections from it
sorry, but the threat model you're talking about is not realistic
--
Regards,
Alicja (nee Hubert) Kario
Principal Quality Engineer, RHEL Crypto team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 115, 612 00, Brno, Czech Republic
_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org
