[cryptography] Interactive graph of the CA ecosystem

shawn wilson ag4ve.us at gmail.com
Fri Dec 14 11:20:34 EST 2012


On Fri, Dec 14, 2012 at 11:10 AM, Bernhard Amann
<bernhard at icsi.berkeley.edu> wrote:
> Hi,
>
> On Dec 14, 2012, at 4:25 AM, Ralph Holz <holz at net.in.tum.de> wrote:
>
>>> Root-CAs are pictured as red nodes, intermediate CAs are green.
>>> The node diameter scales logarithmically with the number of
>>> certificates signed by the node. Similarly, the color of the green
>>> nodes scales proportional to the diameter.
>>
>> Hm, I do have a question. Thawte EV has an "outbound" link to "Thawte
>> Root", similarly TUM has an "outbound" link to DFN. I would understand
>> "outbound" as indicating the direction of the signature, i.e. DFN ->
>> TUM. So I would have expected the link between TUM and DFN to be
>> "inbound" when I click on TUM. But it seems to be consistenly applied,
>> so I guess that was a conscious choice?
>
> Well, we chose to represent the relationships between the certificates
> the other way round - the child certificates point to their parent CA. However,
> this is a purely semantical issue - for your point of view we just would
> have to reverse all links.
>

To that end, have y'all thought of other views that would be
interesting to have? Also, can you put more meta data along with the
provider? Such as address, parent company, how long they've been a CA,
(if it's known) how many certs they've signed?



More information about the cryptography mailing list