Musings about WebPKI and Public Trust
Subscribe
Sign in
Home
Archive
About
Ballot removing the WHOIS reliant domain control validation methods
Hi folks,
Sep 16
•
Amir
Share this post
Musings about WebPKI and Public Trust
Ballot removing the WHOIS reliant domain control validation methods
Copy link
Facebook
Email
Notes
More
Issuance Auditability: Certificate Validation Methods
With great power, comes even greater transparency requirements
Sep 15
•
Amir
Share this post
Musings about WebPKI and Public Trust
Issuance Auditability: Certificate Validation Methods
Copy link
Facebook
Email
Notes
More
July 2024
Reflections on Entrust's Distrust
What happened, why now, and what does this mean for the future of WebPKI
Jul 1
•
Amir
6
Share this post
Musings about WebPKI and Public Trust
Reflections on Entrust's Distrust
Copy link
Facebook
Email
Notes
More
4
June 2024
Entrust has been distrusted
Announcement: https://security.googleblog.com/2024/06/sustaining-digital-certificate-security.html
Jun 27
•
Amir
4
Share this post
Musings about WebPKI and Public Trust
Entrust has been distrusted
Copy link
Facebook
Email
Notes
More
May 2024
Mozilla: Entrust Issues
What is Entrust's and WebPKI's Future?
May 6
•
Amir
1
Share this post
Musings about WebPKI and Public Trust
Mozilla: Entrust Issues
Copy link
Facebook
Email
Notes
More
April 2024
Entrust considered harmful - Part 3
Two steps forward, no revokes back
Apr 29
•
Amir
2
Share this post
Musings about WebPKI and Public Trust
Entrust considered harmful - Part 3
Copy link
Facebook
Email
Notes
More
Entrust considered harmful - Part 2
Where Entrust chooses to continue misissuing certificates
Apr 22
•
Amir
4
Share this post
Musings about WebPKI and Public Trust
Entrust considered harmful - Part 2
Copy link
Facebook
Email
Notes
More
Entrust considered harmful - Part 1
A series on harmful pattern of behavior by Entrust
Apr 15
•
Amir
6
Share this post
Musings about WebPKI and Public Trust
Entrust considered harmful - Part 1
Copy link
Facebook
Email
Notes
More
Beyond Distrust, what can a root program do?
Moving away from the binary trust model for CAs and taking small steps to heal the ecosystem
Apr 10
•
Amir
4
Share this post
Musings about WebPKI and Public Trust
Beyond Distrust, what can a root program do?
Copy link
Facebook
Email
Notes
More
March 2024
Entrust mis-issues a certificate, Refuses To Follow CA/B Rules
Extended Validation certificates are a massive hole in web security
Mar 15
•
Amir
3
Share this post
Musings about WebPKI and Public Trust
Entrust mis-issues a certificate, Refuses To Follow CA/B Rules
Copy link
Facebook
Email
Notes
More
Share
Copy link
Facebook
Email
Notes
More
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts