[cryptography] GlobalSign temporarily ceases issuance of all certificates
marsh at extendedsubset.com
Wed Sep 7 16:08:20 EDT 2011
On 09/07/2011 02:34 PM, Fredrik Henbjork wrote:
> This whole mess just gets "better and better"...
What's interesting is how the attacker simply doesn't fit the expected
motivations that SSL cert-based PKI was ever sold as defending against.
The attacker says a lot of things, but I find this interesting:
> P.S. In wikipedia of SSL, it should be added for future that I caused
> to remove SSL or CA system security model, I have a special idea for
> private communication via browsers which could be used instead
He wants credit for saving the world from PKI!
More information about the cryptography