Let's say I am behind my PC and want to go to any secured website (HTTPS). I have the direct IP address so any possible hack on DNS level is not possible (because I am not using it ;) ).
The packet which is going to the right place (to the secured website) goes through different ISP servers.
Some malicious hacker is sitting on one of those servers between me and the website. He responds with a wrong certificate and tries to make a secured connection with me sitting behind my pc. He is faking that he is the website.
When someone purchased an certificate from VeriSign for example they always asks for an domain name.
From that point I am the only one with a certificate from that domain. A hacker can't purchase an certificate with the same domain name (correct me if this is wrong!!).
So my question is: Is an webbrowser (Firefox, IE, Chrome, Opera, Safari etc.) capable of detecting that the certificate is not corresponding with the domain and give me an error back that something strange happened along the way?
If you have any more information on this topic, please tell me.
Aucun commentaire:
Enregistrer un commentaire