[Cryptography] Well, that showed them!
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Wed Feb 26 07:05:12 EST 2020
I was writing a small followup on Symantec as an example of TB2F CAs, and
wondered what had happened after they were distrusted by browsers. Looks like
the timeline was:
Symantec gets distrusted.
Symantec, valued at just under a billion dollars *after the debacle* sells its
business to DigiCert, and things continue as before ("DigiCert Closes
Acquisition of Symantec's Website SSL Security Unit", eWeek, October 2017 /
"Symantec Selling SSL Security Business to DigiCert for $950M", eWeek,
August 2017).
DigiCert gets a massive investment from private equity firms ("DigiCert Gets
New Investment Post Symantec SSL Acquisition", ChannelFutures, July 2019) /
"Clearlake Capital Group and TA Associates to Make a Strategic Growth
Investment in DigiCert", ThomaBravo, July 2019).
You simply cannot fail in the TB2F CA racket. In particular Symantec didn't
actually fail, it just changed the name on the letterhead and came back even
stronger than before.
Let that be a lesson to all other CAs!
Peter.
More information about the cryptography
mailing list