[cryptography] An appropriate image from Diginotar

Solar Designer solar at openwall.com
Fri Sep 2 19:46:42 EDT 2011


On Sat, Sep 03, 2011 at 03:02:42AM +1200, Peter Gutmann wrote:
> Another point is that minting 200-250 certs isn't something you can do with a
> mouse click, you need to prepare all the cert requests with site-specific data
> customised to each site, and that takes time.  They must have had the run of
> the CA for quite some time to get all that done.

Apparently, at least the Diginotar website was compromised and not fully
cleaned up (if at all) since May 2009 (if not earlier):

http://www.f-secure.com/weblog/archives/00002228.html

Alexander



More information about the cryptography mailing list