Pfft says that this wouldn’t work at all for proof due to how TLS works. Is that true? Is there no hope, then?
If correct, it’s impossible to prove that any server sent a specific piece of data, because it’s encrypted symmetrically, and the only proof you have a zero-knowledge and non-transmissible. (Assuming I’m understanding properly.)
I dunno. I’m not an expert on TLS/HTTPS—I assumed that it would be implemented the natural way (signed and encrypted) where my proposal would work. But the devil is in the details...
Pfft says that this wouldn’t work at all for proof due to how TLS works. Is that true? Is there no hope, then?
If correct, it’s impossible to prove that any server sent a specific piece of data, because it’s encrypted symmetrically, and the only proof you have a zero-knowledge and non-transmissible. (Assuming I’m understanding properly.)
I dunno. I’m not an expert on TLS/HTTPS—I assumed that it would be implemented the natural way (signed and encrypted) where my proposal would work. But the devil is in the details...