On Wed, Jul 3, 2013 at 11:55 AM, Steve Weis <[email protected]> wrote: > Hi. I was interested in your comment that the Comodo hacker used the > HSM programmatic interfaces. Do you have a source of that which you > can share? I'm not finding a good post-mortem that mentions that fact.
the gory details at http://pastebin.com/u/ComodoHacker tl;dr: - Comodo - HTTPS API level access from extracted reseller credentials. CAA might be useful here. - DigiNotar - HSM XUDA interface used directly. CAA not applicable. - StartCOM - netHSM interface used directly. CAA not applicable. -- Too many emails? Unsubscribe, change to digest, or change password by emailing moderator at [email protected] or changing your settings at https://mailman.stanford.edu/mailman/listinfo/liberationtech
