Interested in such a question, is it possible to implement MITM (man in the middle) via SSL / TLS? What is the difference or what exactly should I consider implementing this? JS, C++
Answer 1, Authority 100%
SSL / TLS imply the presence of a trusted third party, the so-called CA (Certificate Authority). Accordingly, MITM is possible when compromising one of the trusted CA. Either when adding a malicious CA to the list of trusted on the client (and on the server, if bilateral authentication is used). Or using a “self-signed” certificate if the user confirms its use.