NNSquad - Network Neutrality Squad

NNSquad Home Page

NNSquad Mailing List Information


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ NNSquad ] Protecting data for the long term with forward secrecy

Protecting data for the long term with forward secrecy

http://j.mp/v0dI6W  (Google Online Security Blog)

   "Forward secrecy requires that the private keys for a connection are
    not kept in persistent storage. An adversary that breaks a single key
    will no longer be able to decrypt months' worth of connections; in
    fact, not even the server operator will be able to retroactively
    decrypt HTTPS sessions.  Forward secret HTTPS is now live for Gmail
    and many other Google HTTPS services(*), like SSL Search, Docs and
    Google+. We have also released the work that we did on the open source
    OpenSSL library that made this possible."

 - - -

*Excellent* work.  Congrats to the team(s) responsible.

Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren 
Co-Founder: People For Internet Responsibility: http://www.pfir.org 
 - Network Neutrality Squad: http://www.nnsquad.org 
 - Global Coalition for Transparent Internet Performance: http://www.gctip.org
 - PRIVACY Forum: http://www.vortex.com 
Member: ACM Committee on Computers and Public Policy
Blog: http://lauren.vortex.com 
Google+: http://vortex.com/g+lauren 
Twitter: https://twitter.com/laurenweinstein 
Tel: +1 (818) 225-2800 / Skype: vortex.com