Hi Rob, all,
we are treating this as an incident although all certs related to D-Trust are
indeed Qualified/EUTL certs governed by National German Law and are not
chaining up to roots that trusted by NSS, hence are not related to the WekbPKI.
An incident report will be submitted by tomorrow
Am Mittwoch, 18. Oktober 2017 11:15:03 UTC+2 schrieb Rob Stradling:
> I've completed a full scan of the crt.sh DB, which found 171 certs with
> ROCA fingerprints.
>
> The list is at https://misissued.com/batch/28/
>
> Many of these are Qualified/EUTL certs rather than anything to do with
> the
On Wednesday, October 18, 2017 at 4:15:03 AM UTC-5, Rob Stradling wrote:
> The list is at https://misissued.com/batch/28/
>
> Many of these are Qualified/EUTL certs rather than anything to do with
> the WebPKI. Only about half of them chain to roots that are trusted by NSS.
>
It's really
I've completed a full scan of the crt.sh DB, which found 171 certs with
ROCA fingerprints.
The list is at https://misissued.com/batch/28/
Many of these are Qualified/EUTL certs rather than anything to do with
the WebPKI. Only about half of them chain to roots that are trusted by NSS.
On
4 matches
Mail list logo
