I’d like to shed some light at the process of Authentication since it’s a fundamental building block in creating
secure tools that need to communicate with other actors over the network. When tools and/or users interact with one
another – e.g., through a web browser – both ends of the interactions need a way to make sure,
they’re communicating with the right party. Some bad actor might for example create a web page that looks like your
bank’s online banking portal. With additional DNS spoofing you might be connecting to the wrong website. When you’d be
trying to log in you’d be prompted for username and password. If you entered them on that phony web page, you’d provide
them to the attacker. It’s imperative for your browser to be able to make sure, that this is not the case here.