I made a few updates to the site. Why do things still look the same? Because all the changes I made were on the back end.
A report released by Netcraft discussed the severe lack of servers that implement perfect forward secrecy (PFS). I hadn’t given PFS any thought but I decided to implement it yesterday. What does this mean to you? As we know, the National Security Agency (NSA) has been busy collecting everybody’s data. The agency claims to dispose of any information from persons inside of the United States but save all encrypted data because the identify of the creator can’t be verified (in truth, the NSA is almost certainly keeping all data regardless of the physical location of the creator). It’s saving everything in the hopes of decrypting it later.
Normally, under Hyper Text Transport Protocol Secure (HTTPS), any intercepted data can be decrypted with the private key. PFS negotiates a temporary keypair between a server and each client. This means the NSA can’t decrypt HTTPS secured data even if they are able to obtain a copy of the server’s private key.
Additionally, I redirected the unsecured version of this site to the secured version. If you try to access http://blog.christopherburg.com your browser will automatically be redirected to https://blog.christopherburg.com/.