Skip to main content

Search

Items tagged with: ca


Wow. So the concerns about the #root #CA trustcor were enough to get them removed from the root CA program in Mozilla (which means they'll probably be removed from Chrome/Edge/etc). Read more here: https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/oxX69KFvsm4/m/yLohoVqtCgAJ

TL;DR: a good thing happened today, #Mozilla stood up for your rights and safety.


Wow. So after a lot of discussion and some digging by others, it looks like Trustcor, a root #CA in all your browsers, was fundamentally compromised (for at least 3 years, and possibly still ongoing), so much so that the current owner may not even realize it. You can read the details via Mozilla's dev-security-policy@mozilla.org at https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/oxX69KFvsm4/m/Equ9-qk5BQAJ
#ca


Fancy, finally an alternative to Let's encrypt!

https://scotthelme.co.uk/introducing-another-free-ca-as-an-alternative-to-lets-encrypt/

It's always good to have alternatives around. ZeroSSL appears to be a European company that now provides free TLS certificates using the ACME protocol.

#TLS #SSL #CA #infosec #letsencrypt