[cryptography] OT: DigiNotar Certificates Are Pulled, but Not on Smartphones

Peter Gutmann pgut001 at cs.auckland.ac.nz
Fri Sep 9 20:56:42 EDT 2011


Jeffrey Walton <noloader at gmail.com> writes:

>Its not a big surprise, since Apple's PKI appears to be generally broken from
>a programmer's perspective

It's also quite badly broken from a standards-compliance perspective, it gets 
quite a number of things wrong.  I was told that this was an artefact of their 
use of CDSA, and would be partially corrected as they moved away from it.

Peter.




More information about the cryptography mailing list