SpaceLifeForm
yoshirI have been thinking about #gemini #protocol lately and it's #TOFU model in particular. While I understand what they are going for, I think it's still really vurnelable against attacks from the #StateActors. Even if #HTTPS cannot penetrate the block, lack of #certificate alerts user to the tampering.
The system where each #server has something like a #webring of hashes certificates of other #websites and clients would check if site supplies real or fake certificates is interesting, but the system still need #bootstraping (Maybe with the help of something like #TOR or #I2P) and it still has risk of sites being #coerced into hosting #fraudulent certificates and then using them to act as #MITM.
Perhaps system of more reasonable compromises can exist, but I am not sure.
The system where each #server has something like a #webring of hashes certificates of other #websites and clients would check if site supplies real or fake certificates is interesting, but the system still need #bootstraping (Maybe with the help of something like #TOR or #I2P) and it still has risk of sites being #coerced into hosting #fraudulent certificates and then using them to act as #MITM.
Perhaps system of more reasonable compromises can exist, but I am not sure.