[cryptography] OT: DigiNotar Certificates Are Pulled, but Not on Smartphones

Peter Gutmann pgut001 at cs.auckland.ac.nz
Fri Sep 9 20:56:42 EDT 2011

Jeffrey Walton <noloader at gmail.com> writes:

>Its not a big surprise, since Apple's PKI appears to be generally broken from
>a programmer's perspective

It's also quite badly broken from a standards-compliance perspective, it gets 
quite a number of things wrong.  I was told that this was an artefact of their 
use of CDSA, and would be partially corrected as they moved away from it.


More information about the cryptography mailing list