Hacker News new | past | comments | ask | show | jobs | submit login

As far I understand the issue is encryped client hello.

> Can't enterprises just MITM the traffic and sign it with a CA the clients trust? What's the benefit of the previous solutions?

This wont work with cert pinning and also is a lot more expensive




Boo-hoo?

If it's not your endpoint then it's not yours to intercept and analyze?


Did you miss the part where it says “enterprise”?


I certainly can't see the part where saying "enterprise" should grant me the right to intercept and analyse someone's traffic.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: