[cryptography] DigiNotar SSL Hack Diagram | Cyber Chatter
noloader at gmail.com
Tue Sep 20 16:21:03 EDT 2011
On Tue, Sep 20, 2011 at 10:37 AM, el GaTo mAlO <gatomalo at uscyberlabs.com> wrote:
> I am a n00b so be nice. I wrote this post about the Diginotar hack and I
> kid of mind-map it. Any comments would be welcomed.
> Timeline of DigiNotar SSL Hack. | Chronological Order of DigiNotar
> SSL-CA Hack
Apple patched 10.6.8 and 10.7 desktops and servers on Sept 09,
iDevices , and other desktops and servers are still vulnerable.
Microsoft smart phones might still be vulnerable.
Google's smart phone position
would we remove the root certificate? DigiNotar hasn't been revoked
as a CA... MITM attacks are pretty rare." (Sep 1, 2011). On Sept 2,
2011 the issue was closed. On Sept 10, 2011 they took partial action
(apparently, the project maintainers were getting tired of folks
re-opening the issue).
Recall that Marsh pointed out that folks thought they were being
MITM'd at least 6 days earlier
Apparently, Google does not want to disrupt e-commerce in the western
hemisphere at the expense of folks in the eastern hemisphere. +1 to
More information about the cryptography