Lazy Reading for 2018/02/25

10 months until Christmas!

One Reply to “Lazy Reading for 2018/02/25”

  1. > but it doesn’t take into account the metadata leakage that https would prevent.

    HTTPS doesn’t really protect any metadata. Package sizes are easily correlated with flow sizes. The linked article covers this: “HTTPS does not provide meaningful privacy for obtaining packages. As an eavesdropper can usually see which hosts you are contacting … even over an encrypted connection it is not difficult to figure out which files you are downloading based on the size of the transfer.”

Comments are closed.