website hit counter
Old Li2-Crystals

 Powered by Max Banner Ads 
« Google’s Obfuscated TCP
Program Can Alter Your Appearance For The Better »

Obfuscated TCP Revisited

If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!


 Powered by Max Banner Ads 

I recently did a post, Google’s Obfuscated TCP that’s actual proof that if you don’t do at least a little research when posting on technical subjects, you can end up looking like a techi-toddler-wannabe still very much in baby clothes instead of the informed, helpful person you’re trying to be.

Since writing that, I’ve discovered that for all intents and purposes, Obfuscated TCP is dead, buried and rotting in it’s digital grave. The cause of death was it’s rejection by the IETF. There is apparently still some hope that, like the Time Lords, it could regenerate and appear in another form, there isn’t a lot of hope for that at this time.

It’s also been pointed out that there is already a way to do what Obuscated TCP wanted to do. Specifically you could have a middle ground, a method less secure than ssl but not needing quite the maintenance. Something that’s mainly intended to make life difficult for casual snoops. The Self-signed certificate.

The problem with this is the way current browsers handle things

SSL with certificate signed by a trusted certificate authority. This gets a security symbol in the browser (usually a padlock).

Plain HTTP, no ssl at all. No security symbol shown.

For SSL with a self-signed certificate, display the security symbol but also make sure to add a big hairy notice that scares the diapers off of the uninformed.

A better way to handle security notices would be something like this

SSL with certificate signed by a trusted certificate authority, show security symbol.

SSL with self-signed certificate, either don’t show security or perhaps show outline of security padlock

Plain HTTP, no ssl at all. No security symbol shown.

This would give the benefits that Obfuscated TCP is going for and save users from the big hairy scary notice that they get hit with now.

Technorati Tags: obfuscated tcp, privacy, web privacy, ssl, encryption, secure sockets layer, snooping

Share and Enjoy:
  • del.icio.us
  • Digg
  • Reddit
  • Technorati
  • StumbleUpon

If you enjoyed this post, make sure you subscribe to my RSS feed!

This entry was posted on Sunday, October 12th, 2008 at 10:00 pm and is filed under Computers, Internet, Opinion, Privacy, software. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

No Comments

Leave a comment

Comments for this post will be closed on 26 November 2008.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word


Comments protected by Lucia's Linky Love.

 Powered by Max Banner Ads