Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.
A different way to tackle online encryption. Thoughts?
So first let me say I realise this may not be practical but I want your opinions.
So lets say you are a bank, and as such you want all data over the wire encrypted so that even somebody listening on wireshark for example cannot intercept your files. An obvious solution is https here but lets say you wanted to be creative.
User A accesses Bank B
Bank B acknowledges that User A wishes to log in and takes note on what useragent is being submitted.
Bank B Sends a page with a javascript line which only produces error in said browser, along with session ID
user A, browser c doesn't respond well to [example error code] and responds with 867px instead of [css.style.element] (for example).
Using both the sessionID and the error output all code is encrypted into one key parameter and submitted over https.
Thoughts?