This practically eliminates the danger of man-in-the-middle attacks because the attacker does not have a way to manipulate the traffic of the independent servers who get the important information as well.

Best of all, they have created a Firefox extension that protects the user’s system after installation. The Firefox extension provides two benefits over not using it. The first is something that users might have experienced already. If a user connects to a website with an untrusted certificate he has to manually allow the connection to the website by using exceptions.

Perspective can detect the validity of the certificate and automatically override the manual exception if it is a valid certificate. Perspective warns the user if an attacker has managed to trick a Certificate Authority into incorrectly issuing a certificate.

A valid site displays a green icon next to the Perspective name in the Firefox statusbar. I did not come up with any fake sites yet but I suppose they show up as a red cross.

The default setting of Perspectives is that it only reacts when a certificate comes up with a Firefox security error. This can be changed in the options to provide information for all https connections.