submitted 2 months ago by t0mri@lemmy.ml to c/security@lemmy.ml

28 comments fedilink hide all child comments

There’s a server, a client, and a hacker in a network. For encryption, the client and the server need to share their private keys. Wouldn’t the hacker be able to grab those during their transmission and decrypt further messages as they please?

you are viewing a single comment's thread
view the rest of the comments

[-] Sagar@sopuli.xyz -4 points 2 months ago

Certifying Authority ensures secure connection establishment. If CA is corrupt, your system will work.

[-] breadsmasher@lemmy.world 3 points 2 months ago

CAs are irrelevant to OPs question

[-] sukhmel@programming.dev -1 points 2 months ago

A bit relevant, because even without sharing private keys Diffie-Hellman without prior knowledge will allow for a MitM attack.

But the answer is too short to make sense of without knowing that, I think

this post was submitted on 28 Apr 2024

32 points (79.6% liked)

Security

4838 readers

2 users here now

Confidentiality Integrity Availability

founded 4 years ago

MODERATORS

gary_host_laptop@lemmy.ml