It would be useful to focus on the short term problem and solution; the coming quantum computer factoring factory issue which will render large-prime crypto less useful is still on the horizon.
The big threat is lack of basic HTTPS everywhere. The second is site key security (ensuring the NSA never gets your private keys). The third is perfect forward security with rapid key rotation.
George William Herbert Sent from my iPhone
On Jul 31, 2013, at 2:45 PM, Ryan Lane rlane32@gmail.com wrote:
On Wednesday, July 31, 2013, Ryan Lane wrote:
On Wed, Jul 31, 2013 at 1:06 PM, David Gerard <dgerard@gmail.com<javascript:_e({}, 'cvml', 'dgerard@gmail.com');>
wrote:
Oh - if anyone can authoritatively compose a WMF blog post on the state of the move to SSL (the move to logins and what happened there, the NSA slide, ongoing issues like browsers in China, etc), that would probably be a useful thing :-)
I'll be posting blog posts each step of the way as we move to SSL. We have plans on SSL for anons by default, but there's no official roadmap for doing so.
A follow up: I've started writing a blog post about this and hope to have something postable by tomorrow.
- Ryan
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l