[SSL Observatory] New bad Google MITM cert
Adam Langley
agl at google.com
Wed Dec 11 08:01:07 PST 2013
On Wed, Dec 11, 2013 at 10:39 AM, Daniel Veditz <dveditz at mozilla.com> wrote:
> They didn't say why.
Basically because the strings in the certificates give some details
about the security setup of the French government. Obviously a MITM
certificate is a serious matter and so all the details needed to block
it have been released, but I don't see that the value of releasing the
other certificates outweighs the interests of government in this case
of keeping potential attackers guessing about specific products that
they may use etc.
Cheers
AGL
More information about the Observatory
mailing list