Comments: Yet another CA snafu

To mitigate these attacks, technology like DANE needs to be deployed sooner rather than later. (Disclaimer: I'm one of authors of the DANE/TLSA RFC)

Posted by Jakob Schlyter at January 6, 2013 04:09 AM

I don't disagree - I'd say that if the vendors deployed any technology it would be helpful. The problem is, they won't. Unless they break ranks like google has, sometimes, not all the time.

Posted by Iang (very old very simple and very ignored idea for improving user security...) at January 6, 2013 04:35 AM

hope you're aware your own https://financialcryptography.com/ SSL cert went sour - sec_error_untrusted_issuer

Posted by A.T. at February 1, 2013 04:17 PM
Post a comment









Remember personal info?






Hit Preview to see your comment.
MT::App::Comments=HASH(0x55ff6c700d18) Subroutine MT::Blog::SUPER::site_url redefined at /home/iang/www/fc/cgi-bin/mt/lib/MT/Object.pm line 125.