[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Microsoft deems all DigiNotar certificates untrustworthy, releases updates

Subject: Microsoft deems all DigiNotar certificates untrustworthy, releases updates
From: morrowc.lists at gmail.com (Christopher Morrow)
Date: Sun, 11 Sep 2011 22:01:47 -0400
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

On Sun, Sep 11, 2011 at 3:37 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> On Sun, 11 Sep 2011 13:00:09 MDT, Keith Medcalf said:
>> The current system provides no more authentication or confidentiality
>> than if everyone simply used self-signed certificates.
>
> Not strictly true. ?The current system at least gives you "you have reached
> the hostname your browser tried to reach". ?A self-signed cert doesn't
> even give you that.

really? even in the face of CA's that have signed certs for existing
domains (to not the domain owners)?

If I have a thawte cert for valdis.com on host A and one from comodo
on host B... which is the right one?

Follow-Ups:
- Microsoft deems all DigiNotar certificates untrustworthy, releases updates
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

References:
- Microsoft deems all DigiNotar certificates untrustworthy, releases updates
  - From: kmedcalf at dessus.com (Keith Medcalf)
- Microsoft deems all DigiNotar certificates untrustworthy, releases updates
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

Prev by Date: Microsoft deems all DigiNotar certificates untrustworthy, releases updates
Next by Date: Why are we still using the CA model? (Re: Microsoft deems all DigiNotar certificates untrustworthy, releases updates)
Previous by thread: Microsoft deems all DigiNotar certificates untrustworthy, releases updates
Next by thread: Microsoft deems all DigiNotar certificates untrustworthy, releases updates
Index(es):
- Date
- Thread