There’s a server, a client, and a hacker in a network. For encryption, the client and the server need to share their private keys. Wouldn’t the hacker be able to grab those during their transmission and decrypt further messages as they please?

  • Sagar Acharya
    link
    fedilink
    arrow-up
    1
    arrow-down
    5
    ·
    8 months ago

    Certifying Authority ensures secure connection establishment. If CA is corrupt, your system will work.

      • lad@programming.dev
        link
        fedilink
        arrow-up
        1
        arrow-down
        2
        ·
        8 months ago

        A bit relevant, because even without sharing private keys Diffie-Hellman without prior knowledge will allow for a MitM attack.

        But the answer is too short to make sense of without knowing that, I think