SoylentNews
SoylentNews is people
https://soylentnews.org/

Title    Time to Remove Some Untrustworthy Certificate Authorities From Browser and OS
Date    Monday November 21, @04:38PM
Author    janrinok
Topic   
from the one-at-the-time dept.
https://soylentnews.org/article.pl?sid=22/11/20/0911213

fab23 writes:

Last week Bruce Schneier published An Untrustworthy TLS Certificate in Browsers and now Ian Carroll has published Security concerns with the e-Tugra certificate authority.

Ian is best known for the death of the EV (Extended Validation) certificates. He legally registered a colliding entity name and then got an EV certificate for his site stripe.ian.sh. As this site is not online any more, a good write up of this is Extended Validation Certificates are (Really, Really) Dead by Troy Hunt.

Troy Hunt is also known for his website ';--have i been pwned?.

Schneier suggests that it might be time to disable / remove trust for the following Certificate Authorities (CAs):

Cory Doctorow gives a very good explanation the the problem in general and its causes here. Basically, we are just too trusting and we believe that others are looking after our interests. It appears that they are not.


Original Submission

Links

  1. "fab23" - https://soylentnews.org/~fab23/
  2. "An Untrustworthy TLS Certificate in Browsers" - https://www.schneier.com/blog/archives/2022/11/an-untrustworthy-tls-certificate-in-browsers.html
  3. "Security concerns with the e-Tugra certificate authority" - https://ian.sh/etugra
  4. "Extended Validation Certificates are (Really, Really) Dead" - https://www.troyhunt.com/extended-validation-certificates-are-really-really-dead/
  5. "';--have i been pwned?" - https://haveibeenpwned.com/
  6. "here" - https://pluralistic.net/2022/11/09/infosec-blackpill/#on-trusting-trust
  7. "Original Submission" - https://soylentnews.org/submit.pl?op=viewsub&subid=57587

© Copyright 2023 - SoylentNews, All Rights Reserved

printed from SoylentNews, Time to Remove Some Untrustworthy Certificate Authorities From Browser and OS on 2023-02-07 04:32:03