[Cryptography] The Trouble with Certificate Transparency
Theodore Ts'o
tytso at mit.edu
Sat Sep 27 21:33:08 EDT 2014
On Sat, Sep 27, 2014 at 06:04:50PM -0700, Greg wrote:
>
> No, that is not true.
>
> The SCTs in the certificate are the ones the MITM puts there.
>
> They are not the ones you're thinking of (that whatever trustworthy entity chose).
If the client has a policy which requires one or more SCT's from
entities that come from legal jourisdictions that aren't subject to
NSL's, then in order for the MITM to impersonate those SCT's, it will
need to either gimmick those entities's certificate, or compromise
their private keys. Either way, it makes the job of the MITM more
difficult.
- Ted
More information about the cryptography
mailing list