Comment Re:Illusion of privacy (Score 1) 224
You're looking in the wrong place.
The public-key algorithms are only used to auth servers/clients and during the negotiation of a session key for a symmetric algorithm. Thanks to the BEAST and CRIME attacks, and the dismal uptake of TLS 1.2, once you rule out the block ciphers in CBC mode the most secure symmetric cipher that clients/servers can be expected to support is RC4, which now accounts for some huge percentage of HTTPS traffic.
Nobody is suggesting that RSA is broken, but there is speculation that the NSA has broken RC4.