There’s a server, a client, and a hacker in a network. For encryption, the client and the server need to share their private keys. Wouldn’t the hacker be able to grab those during their transmission and decrypt further messages as they please?
this post was submitted on 28 Apr 2024
32 points (79.6% liked)
Security
5005 readers
1 users here now
Confidentiality Integrity Availability
founded 4 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Certifying Authority ensures secure connection establishment. If CA is corrupt, your system will work.
CAs are irrelevant to OPs question
A bit relevant, because even without sharing private keys Diffie-Hellman without prior knowledge will allow for a MitM attack.
But the answer is too short to make sense of without knowing that, I think