Browser Extension Defeats Internet Eavesdropping

Pickens writes to tell us that researchers at Carnegie Mellon University have created a simple system to help prevent man-in-the-middle attacks. Using a preset list of friendly sites called 'notaries,' the new 'Perspectives' system helps users to authenticate sites that require secure communications. Additionally this should help with the recently debated solution implemented by Firefox that has so many users frustrated and confused. "By independently querying the desired target site, the notaries can check whether each is receiving the same authentication information (a digital certificate), in response. If one or more notaries report authentication information that is different than that received by the browser or other notaries, a computer user would have reason to suspect that an attacker has compromised the connection."

Re:Excellent!!

[shaitand]

'So, how exactly can you tell the difference between the third party and say, the man-in-the-middle?'

Via a browser extension that utilizes MULTIPLE third parties like this one I'd guess.

'You are free, of course, to put an end to any argument requiring intelligence to participate due to your obvious lack thereof.'

Clearly, you are the great and wise one who is unable to make a point without attempting slander.

'Certificates were never about encryption. They were always about identity.'

Certificates were never USED to verify identity, and have always been USED to provide encryption. How they were intended to be used or should be used is irrelevant. $15 will get you certs from a number of authorities that claim you are someone you aren't.