When It Comes to Encryption, The Web (as in World Wide Web) Isn't Secure and Uses Weak Ciphers About as Often as Every Day, Even in 2024

posted by Roy Schestowitz on Oct 04, 2024,
updated Oct 04, 2024

Gemini Protocol does not

TODAY we've noticed that Lupa says "97% of the [Gemini] capsules use TLS 1.3" - that's way more than the Web!

To quote recent surveys [1, 2]:

Similar numbers from another survey of the Web:

For those of us who aren't cryptography geeks (like Julian Assange is), what does this mean? Well, to quote recent critique of TLS 1.2: "According to the 2021 TLS Telemetry Report, TLS 1.3 is the chosen encryption protocol for the majority of web servers among the top million. Almost 63% of servers prefer TLS 1.3 to other protocols as of August 2021. [...] TLS 1.2 uses a complex cipher suite that includes support for encryption algorithms and ciphers with known cryptographic weaknesses. While the complexity results in the poor choice of the cipher suite, support for weak security mechanisms amplifies the risks of encryption attacks. To address these issues, TLS 1.3 uses a simple cipher suite that supports only those algorithms and ciphers that currently have no known vulnerabilities. It has dropped support for SHA-1, RSA key exchanges, the RC4 cipher, CBC-mode ciphers, MD5, and a few more that can potentially cause downgrade attacks."

In Geminispace the usage of TLS 1.2 is rather rare. It'll probably be extinct in a year or two. Gemini is casually and even nonchalantly mocked for being "old-like" or "antique", but it's actually way ahead where it matters. And yes, it can run on very old and under-powered devices, unlike "modern" browsers. █

Other Recent Techrights' Posts

Red Hat's Owner is Called "America's Worst Tech Company" (IBM) and Microsoft's Liabilities Grow: Microsoft has about a quarter of a trillion (yes, trillion with a "T") in liabilities
How the SLAPPs From Microsoft Staff Are Connected to the Corrupt OSI, Whose Majority of Money Comes From Microsoft for Openwashing, LLM Hype, and Whitewashing GPL Violations During Class Action Trial: Let's explain how some of these things are connected
What Happened to the Open Source Initiative (OSI) Elections: Missed Deadline: they helped expose a number of other scandals
Links 12/05/2025: Measles Rising and Taliban Outlaws Chess in Afghanistan: Links for the day
Gemini Links 12/05/2025: Advice, Iorist Ethics, and Touchscreens: Links for the day
The Finances of GAFAM Aren't as They Seem: MICROSOFT FINANCIAL PYRAMID revisited
Links 12/05/2025: US Brain Drain and Reminder That "Microsoft's Lobbying Efforts Eclipsed Enron" (Fraud Coverup): Links for the day
The Enshittification of Royal Mail (Post Office/Postal Services) Continues: Enshittification is a thing, not only in the digital realm
If the Gossip is True, Today Microsoft Has "Large M1 Meetings" to Discuss Almost 30,000 More Microsoft Layoffs in 2025: the claim is that Microsoft is preparing to lay off 10% of its staff
Microsoft Has a Long and Proven History of Funding Meritless Lawsuits Against Rivals and Critics (It Always Backfires): It also looks like the solicitor used by two Microsofters to SLAPP us is being urgently replaced
Links 12/05/2025: Gardens and Kitchens: Links for the day
Links 12/05/2025: Media Being Attacked (New Forms of Attack on the Press), Many Data Breaches: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, May 11, 2025: IRC logs for Sunday, May 11, 2025
Links 11/05/2025: Pyotr Wrangel and Kubernetes With FreeBSD: Links for the day
What Happened to the Open Source Initiative (OSI) Elections: A Moment of Silence and Revisionism Amid US Government Investigation and Community Uproar: Not a word this month
Microsoft Florian Becomes Patent Troll, Arranges to Sue Companies (Extorting Money Out of Them): From campaigner against software patents to paid Microsoft shill to "FOSS patents" (actually attacking FOSS) to revisionism as "books" (for Microsoft)... and now this
Links 11/05/2025: China's Fentanylware (TikTok) Tells Kids to Vandalise Schools' Chromebooks and Increased Censorship in India: Links for the day
You Need Not Be a Big Company to Defeat Microsoft If You Can Successfully Challenge Its Core "Ideas": Maybe that's just a sign that the ideas of RMS have become too effective and thus "dangerous"
Gemini Links 11/05/2025: Yeeting Oligarch Tech, Offline Browsing: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, May 10, 2025: IRC logs for Saturday, May 10, 2025
One is Simply Doomed to Fail When Working for Violent Men From Microsoft and Attacking Women as Well as People Who Merely Expose Crimes or Report Real Crimes: Imagine saying to people that you "practice law" or "exercise law"
The Tariffs Are Accelerating Microsoft's Decline in China: Judging by the way things are going, there will be considerable adoption of GNU/Linux in years to come, China being one major contributing factor.
Control Your Systems, Control All Your Data: what does it take for us to control our own systems and data?
Misplacing Blame for Security Problems, Sometimes With LLM Slop That Blames "Linux" for Microsoft's Failures: Broken telephones and stochastic parrots beget plenty of Fear, Uncertainty, Doubt (FUD)
Links 10/05/2025: WW2 Revisionism, Further Tit-for-tat in India-Pakistan Conflict: Links for the day
Links 10/05/2025: Germany Considers Smartphone Ban in Schools, Right to Repair Bills: Links for the day
Gemini Links 10/05/2025: Git Server and Great LLM DDoS of 2025: Links for the day
Blizzard/Microsoft Unions Grow Ahead of Mass Layoffs at Microsoft, Apparently Starting Next Week (as Many as 30,000 Workers Laid Off by Year's End): Microsoft already fired about 5,000-6,000 workers this year by our estimates; that's not counting resignations compelled through pressure (i.e. pushed, did not jump) and contractors
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, May 09, 2025: IRC logs for Friday, May 09, 2025