maemo.org - Talk - View Single Post

shawnjefferson	2014-01-31 , 02:49
Posts: 254 \| Thanked: 509 times \| Joined on Nov 2011 @ Canada	#5

Originally Posted by joerg_rw

Err, see (EC)DHE and PFS aka "perfect forward secrecy" - it happens that google actually does use PFS
http://stackoverflow.com/questions/1...orward-secrecy

I'll look at that thanks!

And no, your company's security team implements true MITM on your gateway to do SSL inspection, which nevertheless usually needs you to accept resp install the company's own root cert to your list of trusted certs.

That's what I meant, the company's CA cert is added to each workstations list of trusted certs.

I am my company's security team so I have a fairly good understanding of how to do that part, maybe my communication skills are not quite up to par though!

Last edited by shawnjefferson; 2014-01-31 at 07:47.

Quote & Reply |

The Following User Says Thank You to shawnjefferson For This Useful Post:
Estel