[SSL Observatory] SSL CA compromise in the wild
Ali-Reza Anghaie
ali at packetknife.com
Wed Mar 23 15:48:21 PDT 2011
In this case or the case of the MS certs being bought at random, why
aren't these roots being pulled from browsers or at least thoroughly
humiliated with really forceful messages?
Honestly, how hard would it have been for the big three/four browsers
to have added a warning message for all Comodo sites. It would have
made private customers have second thoughts on working with them, made
other CAs double and triple check their work, etc.
Inconvenient and annoying? Likely. But so is a 0300 knock and potato
bagged escort out of your home in Tehran, Iran.. -Ali
More information about the Observatory
mailing list