Search Mailing List Archives


Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

[liberationtech] Another CA Compromise: TurkTrust

Julian Oliver julian at julianoliver.com
Thu Jan 3 17:18:43 PST 2013


..on Fri, Jan 04, 2013 at 03:09:41AM +0200, Nadim Kobeissi wrote:
> Another CA has been found issuing SSL certificates for Google services.
> Mozilla has acted on the issue:
> https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/
> 
> The weird thing is that it's starting to appear less and less crazy to just
> get rid of the CA system and replace it with… nothing. What do you guys
> think?

This is where I like Moxie's approach with Convergence very much, albeit I
haven't had a whole lot of luck with it (in BETA) so far. 

    http://convergence.io/index.html

SSL/TLS is a fairly fundamental part of the transport layer infrastructure these
days - hard to shake it! But yes indeed, it's insane that we're trusting these
random companies to look after their end of the bargain, let alone the browsers
vendors that trust them in turn. 

Cheers,

-- 
Julian Oliver
http://julianoliver.com
http://criticalengineering.org



More information about the liberationtech mailing list