Archive - Musings about WebPKI and Public Trust

July 2024

Reflections on Entrust's Distrust

What happened, why now, and what does this mean for the future of WebPKI

Jul 1, 2024 •

June 2024

Entrust has been distrusted

Announcement: https://security.googleblog.com/2024/06/sustaining-digital-certificate-security.html

Jun 27, 2024 •

May 2024

Mozilla: Entrust Issues

What is Entrust's and WebPKI's Future?

May 6, 2024 •

April 2024

Entrust considered harmful - Part 3

Two steps forward, no revokes back

Apr 29, 2024 •

Entrust considered harmful - Part 2

Where Entrust chooses to continue misissuing certificates

Apr 22, 2024 •

Entrust considered harmful - Part 1

A series on harmful pattern of behavior by Entrust

Apr 15, 2024 •

Beyond Distrust, what can a root program do?

Moving away from the binary trust model for CAs and taking small steps to heal the ecosystem

Apr 10, 2024 •

March 2024

Entrust mis-issues a certificate, Refuses To Follow CA/B Rules

Extended Validation certificates are a massive hole in web security

Mar 15, 2024 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts