[Cryptography] Opening Discussion: Speculation on "BULLRUN"

Chris Palmer snackypants at gmail.com
Tue Sep 10 23:14:03 EDT 2013

On Tue, Sep 10, 2013 at 2:04 PM, Joe Abley <jabley at hopcount.ca> wrote:

> As an aside, I see CAs with Chinese organisation names in my browser list.

I wouldn't pick on/fear/call out the Chinese specifically.

Also, be aware that browsers must transitively trust all the issuers
that the known trust anchors have issued issuing certificates for.
That's a much bigger set, and is not currently fully knowable.
(Another reason to crave Certificate Transparency.)

More information about the cryptography mailing list