• treadful@lemmy.zip
    link
    fedilink
    English
    arrow-up
    5
    ·
    12 days ago

    I’m far from an expert on PKI, but isn’t the keypair used for the cert used for key exchange? Then in theory, if that key was compromised, it could allow an adversary to be able to capture and decrypt full sessions.

    • snowfalldreamland@lemmy.ml
      link
      fedilink
      English
      arrow-up
      5
      ·
      12 days ago

      Im also not an expert but i believe since there Is still an ephemeral DH key exchange happening an attacker needs to actively MITM while having the certificate private key to decrypt the session. Passive capturing wont work