Jump to content

Notícias de Tecnologia

  • entries
    87
  • comments
    0
  • views
    82,192

Contributors to this blog

  • FDomingos 56
  • jpaulino 21
  • Rui Carlos 5
  • HecKel 4
  • pedrotuga 1

23000 HTTPS certificates axed after CEO emails private keys

Rui Carlos

319 views

Citação

A major dust-up on an Internet discussion forum is touching off troubling questions about the security of some browser-trusted HTTPS certificates when it revealed the CEO of a certificate reseller emailed a partner the sensitive private keys for 23,000 TLS certificates.

The email was sent on Tuesday by the CEO of Trustico, a UK-based reseller of TLS certificates issued by the browser-trusted certificate authorities Comodo and, until recently, Symantec. It was sent to Jeremy Rowley, an executive vice president at DigiCert, a certificate authority that acquired Symantec's certificate issuance business after Symantec was caught flouting binding industry rules, prompting Google to distrust Symantec certificates in its Chrome browser. In communications earlier this month, Trustico notified DigiCert that 50,000 Symantec-issued certificates Trustico had resold should be mass revoked because of security concerns.

[...]

Fonte



0 Comments


Recommended Comments

There are no comments to display.

×
×
  • Create New...

Important Information

By using this site you accept our Terms of Use and Privacy Policy. We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.