[cryptography] wont CA hackers CA pin also? and other musings (Re: PKI "fixes" that don't fix PKI (part III))
holz at net.in.tum.de
Sat Sep 10 12:19:36 EDT 2011
> And just while I am here there was a paper that proposed a firefox plugin
> that would cache certs and warn if one changed unexpectedly. Savy users
> would then notice the warning before clicking through, and post the
> on relevant security lists. However the plugin seems to be vaporware
> and no
> one ever implemented or at least released such a thing which seems rather
> odd in the last years SSL/PKI environment. We could really use such a
> around now, I'd install it for sure.
I am not quite sure... are you referring to Kai Engert's recent
proposal? We're working on a (more elaborate) version of that...
Dipl.-Inform. Ralph Holz
I8: Network Architectures and Services
Technische Universität München
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 490 bytes
Desc: OpenPGP digital signature
More information about the cryptography