[cryptography] Client TLS Certificates - why not?

Martin Paljak martin at martinpaljak.net
Tue Mar 5 08:46:02 EST 2013


Hello,

On Mon, Mar 4, 2013 at 9:22 AM,  <strife at riseup.net> wrote:
> Can anyone enlighten me why client TLS certificates are used so rarely? It
> used to be a hassle in the past, but now at least the major browsers offer
> quite decent client cert support, and seeing how most people struggle with
> passwords, I don't see why client certs could not be beneficial even to
> "ordinary users".

Maybe because "constant wire encryption" is not the most effective
solution for all use cases or applicable in the "web as we know it" at
all ?

Martin



More information about the cryptography mailing list