[Cryptography] The Trouble with Certificate Transparency
Greg
greg at kinostudios.com
Sat Sep 27 21:44:29 EDT 2014
Dear Ted,
On Sep 27, 2014, at 6:33 PM, Theodore Ts'o <tytso at mit.edu> wrote:
> On Sat, Sep 27, 2014 at 06:04:50PM -0700, Greg wrote:
>>
>> No, that is not true.
>>
>> The SCTs in the certificate are the ones the MITM puts there.
>>
>> They are not the ones you're thinking of (that whatever trustworthy entity chose).
>
> If the client has a policy which requires one or more SCT's from
> entities that come from legal jourisdictions that aren't subject to
> NSL's, then in order for the MITM to impersonate those SCT's, it will
> need to either gimmick those entities's certificate, or compromise
> their private keys. Either way, it makes the job of the MITM more
> difficult.
Ah yes, I see what you mean now, thank you for clarifying. This doesn't really fix the problem, but it might make life more difficult for everyone (including the MITM, and those who are trying to use CT legitimately).
OK, I am done with emails about CT for the day. Have spent way too much time on this already, and I didn't even get payed for it. :P
Cheers,
Greg
--
Please do not email me anything that you are not comfortable also sharing with the NSA.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140927/0dda949a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140927/0dda949a/attachment.sig>
More information about the cryptography
mailing list