[Cryptography] Dells are shipping with a rogue root level CA cert
Viktor Dukhovni
cryptography at dukhovni.org
Tue Nov 24 14:09:53 EST 2015
On Tue, Nov 24, 2015 at 12:56:15PM -0500, Chris Tonkinson wrote:
> Wouldn't it be funny (for some reasonably twisted definition of the word
> "funny") to learn that for example that the IdenTrust chain was
> compromised by some state actor(s) - thus making Let's Encrypt a very
> well intentioned charade of lulz.
I think of LE as opportunistic security for HTTPS. Sites that were
in the clear before now resist passive monitoring. LE continues
the illusion of security of DV certificates. What's new is the
combination of the right price with automated enrollment.
DV is essentially leap of faith as a public service.
--
Viktor.
More information about the cryptography
mailing list