Hacker News new | comments | ask | show | jobs | submit login

How do we know that Let's Encrypt isn't an NSA/CIA program? Like a way to make it easier for agencies to MITM or something?

With the current CA scheme you'll always have to trust someone at some point. I think trusting the EFF with not collaborating with the NSA is a pretty good bet.

Doesn't matter. TLS with vanilla PKI isn't a defence against the NSA, it's a defence against your CC number or password being pilfered by a dodgy hotspot operator...or from your ISP injecting ads in to your webpages.

Anyone who thinks LetsEncrypt is a backlash wrt the Snowden revelations is deluded. A race to the bottom for DV certs was as inevitable as mass online piracy was once the cost of broadband filesharing went to zero.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact