[Cryptography] Commercial PKI as dog poop
Salz, Rich
rsalz at akamai.com
Thu May 13 12:40:22 EDT 2021
> A CDN is "non origin certification"
> Meaning the owner of the certificate has no control over
the name, and the owner of the name has no control over
the owner of the certificate casually redirecting the
name to a machine controlled by someone else.
You do not know what you are talking about.
The fact that DNS says www.example.com is a host that is not where you, as an individual, think it should be, is not anyone's problem but your expectation.
More information about the cryptography
mailing list