Posted by Sebastian on Apr 14

Hey,

That’s true. But the keygen element is flawed by the known-broken CA
system(*) and you can’t build a secure house on a broken foundation. You
could check whether the certificate for your site is issued by your CA,
but if the can issue certificates they could simply attack your browsers
updater. Our only hope for truly secure communication are tools like pgp
combined with anonymity through for example TOR or freenet (not the…