[cryptography] DigiNotar SSL Hack Diagram | Cyber Chatter

Marsh Ray marsh at extendedsubset.com
Tue Sep 20 16:54:09 EDT 2011

On 09/20/2011 03:21 PM, Jeffrey Walton wrote:
> Google's smart phone position
> (http://code.google.com/p/cyanogenmod/issues/detail?id=4260): "Why
> would we remove the root certificate?  DigiNotar hasn't been revoked
> as a CA... MITM attacks are pretty rare." (Sep 1, 2011). On Sept 2,
> 2011 the issue was closed. On Sept 10, 2011 they took partial action
> (apparently, the project maintainers were getting tired of folks
> re-opening the issue).

Those are the Cyanogen guys. Android modders. I heard that one of them 
was employed by Samsung, but AFAICT they are not speaking for Google.

People who run Cyanogen will probably get the fix faster than I will get 
one for my non-modded Google Nexus S phone though. :-/

- Marsh

More information about the cryptography mailing list