• treadful@lemmy.zip
    link
    fedilink
    English
    arrow-up
    5
    ·
    6 days ago

    I’m far from an expert on PKI, but isn’t the keypair used for the cert used for key exchange? Then in theory, if that key was compromised, it could allow an adversary to be able to capture and decrypt full sessions.