[SSL Observatory] SSL CA compromise in the wild

[Peter Gutmann]

Matt McCutchen <matt at mattmccutchen.net> writes:

>The SSH "model" is a cop-out.  It remembers the first public key it sees in
>the hope that that is the one for the server you wanted, but you really have
>no reason to believe that is so.

Only if it's an exact clone of how SSH does it.  Something like Perspectives
would have dealt with this issue pretty well, "a new cert for Google that
you've never seen before has suddenly appeared, you probably shouldn't trust
this".  Works better than all the PKI folderol ever will.

Peter.