* Posts by hyakuhei

1 post • joined 5 Nov 2011

SSL authority stops issuing certificates following breach

hyakuhei

Coerce a CA?

You'll find that the Chinese Internet Network Information Centre (CINIC) is a trusted CA in a number of CA bundles, as are a number of other nation-state run CAs.

http://lwn.net/Articles/372264/

No need to twist anyone's arm there I'm afraid, sure there's a deniability angle, but if you want subvert a certificate without it being attributable to your nation you go after some crappy CA in another region, not twist the arm of a CA in your own country.

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2022