Monday, August 19, 2013

In Defense of JavaScript Cryptography (meadhbh.org)

Google "javascript cryptography" and you'll quickly find a fair number of people dismissing JS Crypto as a fools errand. My favorite is the Matasanto Security article entitled "JavaScript Cryptography Considered Harmful." The tone of the article seems a little alarmist to me. But... it also happens to bring up a few really great points. Its critique of the current state of web app crypto is mostly spot-on. However, the state of the art is evolving quickly and may soon make the Matasano Security article mostly irrelevant...

Read more...