Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.communick.com/users/raphael/statuses/113732883756000220">Raphael Lullis (raphael@mastodon.communick.com)'s status on Sunday, 29-Dec-2024 07:48:05 JST</a><a href="https://mastodon.communick.com/@raphael" title="raphael@mastodon.communick.com"><img src="https://gnusocial.jp/avatar/27651-48-20240312111807.webp" width="48" height="48" alt="Raphael Lullis" style="position: absolute; left: 0; top: 0;">Raphael Lullis</a><div><a href="https://gnusocial.jp/notice/8351542" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://infosec.exchange/@jonnadul">@jonnadul</a> </p><p>My idea is, simply put, to build a browser extension that could let people share the *encrypted* responses they get from Twitter/Reddit/Instagram API with a third party. </p><p>What you seem to be saying is that it actually is as simple as getting the encrypted stream and using the SSL certificate to decrypt it. Is it really the case, or does HTTPS have some kind of other mechanisms (forward secrecy?) which makes this a bit more complicated than that?</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4272411#notice-8351543">In conversation</a><time datetime="2024-12-29T07:48:05+09:00" title="Sunday, 29-Dec-2024 07:48:05 JST">about a month ago</time> <span>from <span><a href="https://mastodon.communick.com/@raphael/113732883756000220" rel="external" title="Sent from mastodon.communick.com via ActivityPub">mastodon.communick.com</a></span></span><a href="https://mastodon.communick.com/@raphael/113732883756000220">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Raphael Lullis (raphael@mastodon.communick.com)'s status on Sunday, 29-Dec-2024 07:48:05 JSTRaphael Lullis
in reply to
- Srujan
@jonnadul
My idea is, simply put, to build a browser extension that could let people share the *encrypted* responses they get from Twitter/Reddit/Instagram API with a third party.
What you seem to be saying is that it actually is as simple as getting the encrypted stream and using the SSL certificate to decrypt it. Is it really the case, or does HTTPS have some kind of other mechanisms (forward secrecy?) which makes this a bit more complicated than that?
In conversationabout a month ago from mastodon.communick.compermalink

Public

Embed Notice

HTML Code

Corresponding Notice