Clarify security status displayed in Brave address bar #175

RubenKelevra · 2021-01-24T13:42:02Z

Currently, all data received by the brave integration (#64) is marked as "not secure". While this is currently true for IPNS, it's not true for IPFS-CIDs.

I created a ticket to have a look at the integration of DNSSec to make sure we have domain-to-content validation and don't rely on unencrypted unsigned DNS requests which can be altered by MITM or DNS-Spoofing.

URLs with the IPFS-scheme are also marked as insecure, which is not true - so there's also a ticket (brave/brave-browser#13727) for that.

Originally I created a ticket here, but the content got moved to brave/brave-browser#13706.

RubenKelevra added the need/triage Needs initial labeling and prioritization label Jan 24, 2021

ipfs deleted a comment from welcome bot Jan 25, 2021

lidel added topic/brave Issues specific to IPFS in Brave browser vendors status/in-progress In progress and removed need/triage Needs initial labeling and prioritization labels Jan 25, 2021

lidel changed the title ~~Secure context upgrades (Brave browser)~~ Clarify security status displayed in Brave address bar Jan 26, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Clarify security status displayed in Brave address bar #175

Clarify security status displayed in Brave address bar #175

RubenKelevra commented Jan 24, 2021

Clarify security status displayed in Brave address bar #175

Clarify security status displayed in Brave address bar #175

Comments

RubenKelevra commented Jan 24, 2021