Techly NewsGet the app

Get the latest tech news

Certificate Authorities and the Fragility of Internet Safety


Mistakes by CAs undermine HTTPS and safety on the internet

Google/Apple/Microsoft are big companies and they don’t want to be in a situation where governments can apply pressure on them to sign invalid keys (whether via legal authority or backchannel threats). Symantec was one of the bigger Certificate Authorities that made A LOT of mistakes and was eventually distrusted by all trust stores in 2017. If this turns out to not be intentionally malicious, there is still the example of India CCA (which is run by the Indian government) issuing a certificate for google.com and yahoo.com in 2014.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of fragility

fragility

Photo of internet safety

internet safety

Related news:

News photo

Google and Roblox teamed up on a weird game to teach kids about internet safety

News photo

The Microsoft-CrowdStrike outage could spur a Big Tech trust reckoning and threaten tech giants' plans for AI | Experts warn the incident highlights the fragility of tech systems and AI's potential risks.

News photo

IT outage exposes fragility of tech infrastructure

« They don't make them like that any more: the Yamaha DX7 keyboard
T-Mobile US CSO: Spies jumped from one telco to another in a way 'I've not seen in my career' »