Web-based cryptography is always snake oil
cryptographyweb-basedsecuritysnake oilclient-side codeserver operatorincoherent threat model
Author: enz
Date: 7/5/2026
Article Summary:
A critique of web-based cryptography, arguing that it is inherently flawed due to the inherent relationship between the client-side code and the server operator, making it impossible to secure against the server operator's malice.