No, it's a blessing. Removing the ability to debug your HTTP calls while at the same time shoveling money into the pockets of sleazy CAs who are in the pocket of the NSA isn't going to help anyone.
If we had a truly distributed, truly incorruptible CA system, I'd be all for shoving encryption down people's throats. As it is though, many things don't need encryption (such as any publicly-available informational site) and forcing people to use it by buying into a broken system doesn't make sense.
Yes, people should be using more TLS. But it feels really, really wrong to force this in at the protocol level. Encryption is a transport concern, not a protocol one. I understand the purpose behind it, but it's the wrong solution.
No, it's a blessing. Removing the ability to debug your HTTP calls while at the same time shoveling money into the pockets of sleazy CAs who are in the pocket of the NSA isn't going to help anyone.
If we had a truly distributed, truly incorruptible CA system, I'd be all for shoving encryption down people's throats. As it is though, many things don't need encryption (such as any publicly-available informational site) and forcing people to use it by buying into a broken system doesn't make sense.
Yes, people should be using more TLS. But it feels really, really wrong to force this in at the protocol level. Encryption is a transport concern, not a protocol one. I understand the purpose behind it, but it's the wrong solution.