[Cryptography] NIST Workshop on Elliptic Curve Cryptography Standards
ianG
iang at iang.org
Fri May 15 11:02:43 EDT 2015
On 13/05/2015 23:30 pm, Ryan Carboni wrote:
> In odd news, the US government has to pay private companies for
> certificates.
Yes. It's an odd sort of compact between corporations and USG for the
latter's support for PKI. If the USG also ran a big CA that could be
used for MITMing other organisations, it would be a bit obvious,
wouldn't it ;-)
Also, if the browsers listed a USG CA, what happens when the Chinese and
Russians insist on theirs? Actually that's how the Chinese one worked
until an excuse was found to punish it.
The PKI - new playground for the great game?
> You'd think they'd be able to get browser makers to allow
> a root certificate that can only verify ".gov" addresses and do some
> certificate pinning.
You'd think ... a lot of things about PKI.
iang
More information about the cryptography
mailing list