Some one explain this to me. If I use Https would I still be protected from my own service providers (isp/carriers).
Surely anyone who can see the handshake can also decrypt what follows. I ask this because I'm assuming this move is a reaction to all the NSA buzz that's been in the media(assumption).
And I would figure the only way all the spying was going on is because one of the parties we depend on for our internet services anywhere from the ISP to the end server were compromised.
> Surely anyone who can see the handshake can also decrypt what follows.
If I understand your claim here, it seems that you aren't yet familiar with key pair cryptography.
It's not enough for someone to witness the handshake - they need to actually possess the 'private' key of one a party in order to decrypt traffic that has been encrypted with that party's 'public' key.
It's an amazing feat of mathematics; the fact that it is possible suggests, at least to me, that the physics of the universe in some sense favor the evolution of verifiable private communications.
Surely anyone who can see the handshake can also decrypt what follows. I ask this because I'm assuming this move is a reaction to all the NSA buzz that's been in the media(assumption).
And I would figure the only way all the spying was going on is because one of the parties we depend on for our internet services anywhere from the ISP to the end server were compromised.
So how would HTTPS make a difference?