Tobias Rapp wrote:
> I guess the centralized trust model of SSL has been a known problem
> for ages. Don't understand why they try to make so much noise about
> it now.
Probably because it was a Government attack, those fraudulent
certificates have been already rejected. But wait ICS currently
I guess the centralized trust model of SSL has been a known problem for ages.
Don't understand why they try to make so much noise about it now. IMO the
problem of the alternative model (web of trust) is that it lacks the "cash
cow" properties and thus is less appealing to certificate authorities.