Chapter 12. Secure Transport
Cryptography allows us to secure the network, but this effort is wasted unless we also secure the last two feet between the screen and the user’s eyeballs. Strong cryptographic protocols are only the starting point for securing the system.
We have spent enough time reviewing past failures. It is time to look at the one unqualified success story of Internet security. SSL has performed beyond its original expectations for more than a decade. SSL does not meet every security need we recognize today, and the user experience falls short of what we want. Like any important infrastructure, SSL needs ongoing maintenance so that it meets the needs it serves today that are above and beyond the original design brief. If we understand ...
Get The dotCrime Manifesto now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.