Cable Forum - View Single Post - Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797]

unicus · 04-04-2008, 02:51

I know that an established secure connection between a browser and a server would be hard to crack but I have a question regarding SSL and interception, could anyone help?

What I was wondering is this; browser A requests a secure connection with server B though the connection is through a transparent interceptor C. Then instead (and unbeknown to A & B) a secure connection is made between A & C and also between C & B. So A thinks it has a secure connection with B and B with A but they both have a secure connections with C which is then able to see everything unencrypted. Is this clear and is this technically possible?

I'm no expert on this stuff but I don't see why it's not possible (and scary). Now I don't think that at this present time Phorm have this type of system but, if it's possible, they could and would just run some spin BS about making it more secure and the suits with pound signs would believe it I'm sure (like they already have).

I actually think that packet inspection equipment should be tightly regulated as it could be very dangerous in the wrong hands (like Phorm's).

04-04-2008, 02:51	#2176
unicus Inactive Join Date: Mar 2008 Posts: 60	Re: Virgin Media Phorm Webwise Adverts [Updated: See Post No. 1, 77, 102 & 797] I know that an established secure connection between a browser and a server would be hard to crack but I have a question regarding SSL and interception, could anyone help? What I was wondering is this; browser A requests a secure connection with server B though the connection is through a transparent interceptor C. Then instead (and unbeknown to A & B) a secure connection is made between A & C and also between C & B. So A thinks it has a secure connection with B and B with A but they both have a secure connections with C which is then able to see everything unencrypted. Is this clear and is this technically possible? I'm no expert on this stuff but I don't see why it's not possible (and scary). Now I don't think that at this present time Phorm have this type of system but, if it's possible, they could and would just run some spin BS about making it more secure and the suits with pound signs would believe it I'm sure (like they already have). I actually think that packet inspection equipment should be tightly regulated as it could be very dangerous in the wrong hands (like Phorm's).