Colin Berkshire says No. Much of his argument assumes that the NSA has compromised root-level security certificates. In July he wrote a pessimistic article titled Does SSL equate to privacy?. An excerpt:
If you are concerned about keeping communications private from commercial eavesdroppers, then 256 bit security is relatively effective. . . but, if you want to have privacy from government the story is entirely different. You have no privacy whatsoever.
Last week he repeated his pessimistic message: How to secure corporate communications.
Is he correct? Has the NSA compromised root-level security certificates? I don’t know.
Visit my website: http://russbellew.com
© Russ Bellew · Fort Lauderdale, Florida, USA · phone 954 873-4695