That’s a start, but if the main resource (the HTML page) can be modified it does... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

tlrobinson on Aug 16, 2018 | parent | context | favorite | on: OpenPGPjs has passed an independent security audit

That’s a start, but if the main resource (the HTML page) can be modified it doesn’t help.

If you could require the root page be cryptographically signed (but by who?) and optionally prompted for updates then we’re talking.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact