[Discuss] My Bank's Web Site is Behaving Oddly

[Matthew Gillen]

On 5/4/2016 5:37 PM, Kent Borg wrote:
> -kb, the Kent who admits he doesn't know how https works through Akamai
> and the like.

It doesn't. Akamai is a TLS termination point.  They have the private
keys of any domain they are proxying for, so they can act as the TLS
endpoint. Once your connection gets into their system, it is up to
Akamai to protect it and you have no visibility into whether your data
stays encrypted in transit within Akamai.

Now you can start to see why the big players who can afford their own
CDN like Google don't use Akamai anymore.

Matt