29
submitted 6 months ago by t0mri@lemmy.ml to c/security@lemmy.ml

There’s a server, a client, and a hacker in a network. For encryption, the client and the server need to share their private keys. Wouldn’t the hacker be able to grab those during their transmission and decrypt further messages as they please?

you are viewing a single comment's thread
view the rest of the comments
[-] Sagar@sopuli.xyz -4 points 6 months ago

Certifying Authority ensures secure connection establishment. If CA is corrupt, your system will work.

[-] breadsmasher@lemmy.world 3 points 6 months ago

CAs are irrelevant to OPs question

[-] sukhmel@programming.dev -1 points 6 months ago

A bit relevant, because even without sharing private keys Diffie-Hellman without prior knowledge will allow for a MitM attack.

But the answer is too short to make sense of without knowing that, I think

this post was submitted on 28 Apr 2024
29 points (78.4% liked)

Security

5014 readers
1 users here now

Confidentiality Integrity Availability

founded 4 years ago
MODERATORS