@kiloqubit.com on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

KiloQubit

kiloqubit.com

did:plc:hohh3jdjluqeaynxglb7jobk

Pretty much any state actor could issue a valid cert (through control of one of the CAs in their country) that your browser or app will accept as valid without any corporate CA stuff. Combine that with control over DNS or routing, and a MITM attack is not very hard. The defense is to pin SPKI.

2024-12-24T02:43:32.651Z