undefined | Better HN

0 pointskelnos1y ago0 comments

> There are even countries that MITM all HTTPS traffic, and your choices are to install the government MITM root certificates into your trust store, or not use HTTPS.

Are there? When Kazakhstan announced they were going to do this, all the major browser vendors blocked their CA... so they backed down. What other countries do this and get away with it?

0 comments

lemme_tell_ya1y ago

South Korea has some requirement like this for banking if I recall correctly https://palant.info/2023/02/06/weakening-tls-protection-sout...

j / k navigate · click thread line to collapse

0 pointskelnos1y ago0 comments

> There are even countries that MITM all HTTPS traffic, and your choices are to install the government MITM root certificates into your trust store, or not use HTTPS.

Are there? When Kazakhstan announced they were going to do this, all the major browser vendors blocked their CA... so they backed down. What other countries do this and get away with it?

0 comments

lemme_tell_ya1y ago

South Korea has some requirement like this for banking if I recall correctly https://palant.info/2023/02/06/weakening-tls-protection-sout...

j / k navigate · click thread line to collapse