[cryptography] really sub-CAs for MitM deep packet inspectors? (Re: Auditable CAs)

Peter Gutmann pgut001 at cs.auckland.ac.nz
Fri Dec 2 00:11:54 EST 2011


Adam Back <adam at cypherspace.org> writes:

>Surely the SSL Observatory has these MitM sub CA certs if they exist in the
>wild and are being used to create real time MitM certs for domains the issuer
>certainly doesnt own.

You have to be inside the captive portal to see these blue-pill certs.  This 
is why various people have asked for samples, because only a select lucky few 
will be able to experience them in the wild.

Peter.



More information about the cryptography mailing list