Skip to main content

How can Kazakhstan perform MITM attacks on all HTTPS traffic? [Resolved]

There is now MITM on HTTPS traffic in Kazakhstan.

But for MITM to work, other than installing the certificate, there has to be someone proxying the request, right? Will that role be played by the ISPs?

Say I want to connect to Facebook. Does the proxy spoof Facebook's certificate? How does that work?

Accessing Facebook under the MITM scheme and looking at the certificates from the browser, would the MITM certificate be visible?

Question Credit: microwth
Question Reference
Asked July 24, 2019
Posted Under: Security
1 Answers

Your Answer