An Information Security Community
I am getting the impression that the end user is not supposed to ever mistrust any of those CAs that all browser and OS vendors are shipping with their products for our convenience.
The Comodo hack was only one incident in a row of incidents that show us that the trust model of PKI for SSL certificates is broken in many ways.
First off there are far too many CAs that your browser or operating system trusts per default.
Your browser or operating system trusts them so…Continue
Added by d3tm4r on March 5, 2011 at 1:30pm — No Comments