Log in

No account? Create an account
Nokia makes man-in-the-middle attacks on your HTTPS sessions a… - Almost certainly not Johnny Depp.

> Recent Entries
> Archive
> Friends
> Profile

January 17th, 2013

Previous Entry Share Next Entry
11:44 am
Nokia makes man-in-the-middle attacks on your HTTPS sessions a standard feature, that they provide to you as a service, whether you like it or not.

(4 comments | Leave a comment)


[User Picture]
Date:January 17th, 2013 07:06 pm (UTC)
For the record? I've been one of those rare Finns who have never owned a Nokia phone, and never wanted one. The phone interface grates me, not to mention the kerfluffle with Lex Nokia and some former AND current dudes in leadership...

With the mess under current CEO... yeah, does not surprise me one whit.
[User Picture]
Date:January 17th, 2013 08:49 pm (UTC)
There's a bit of a misunderstanding there on their part. If you're using an S40 then you don't have an HTTPS session. You have a session of whatever Nokia uses for their proxy between you and Nokia, and then _they_ have a HTTPS session.

S40 feature phones aren't up to running a proper browser, they run a minimal app that acts as a thin client, with all of the processing happening on the Nokia servers (much like Opera Mini does: http://en.wikipedia.org/wiki/Opera_Mini#Privacy_and_security).
[User Picture]
Date:January 17th, 2013 09:59 pm (UTC)

Only on asha touch and s40

On my lumia I use IE and on my pureview it does not do this
[User Picture]
Date:January 17th, 2013 10:02 pm (UTC)

The pureview 808

Run Belle fp2

> Go to Top