security.ias.edu
Public Audit Records, Certificate Transparency, Google Chrome and you | IAS Security
https://security.ias.edu/public-audit-records-certificate-transparency-google-chrome-and-you
Public Audit Records, Certificate Transparency, Google Chrome and you. Thu, 02/12/2015 - 11:06. Why is Google Chrome complaining about my certificate? A recent update to Google Chrome is now warning users that certificates do not have public audit records. They put a yellow triangle over the normal lock display in the location bar and give a somewhat confusing explanation. This is all due to a campaign that Google has been driving. Is it safe to use sites that don't use Certificate Transparency? Google C...
datenzone.de
erik | Erik Tews
https://www.datenzone.de/blog/author/erik
Using Certificate-Transparency to grab a list of all hostnames a CA has issued certificates for. On August 31, 2015. Is an approach to improve the security of CAs issuing X.509 certificates by running a public audit-log for all issued certificates. Before a CA issues a certificate, the tbsCertificate structure. How to get the hostnames from the log. To download, simply type:. The result should be a sorted list of all hostnames (including with wildcards) digicert every issued a certificate for. Up to 1...
csoandy.com
Protecting a Better Internet
http://www.csoandy.com/files/archive-may-2014.html
Andy Ellis Protecting a Better Internet. Changing the world, one site at a time…. Protecting a Better Internet. Andy Ellis is the Chief Security Officer of Akamai Technologies. Opinions here are mostly his own. Protecting a Better Internet. The Brittleness of the SSL/TLS Certificate System. Even if the owner of that site hasn't requested them to do so; that link is also a quick primer on the certificate hierarchy.). Three years later, one outcome of the uncertainty around Heartbleed - that any. CRLs are ...
mckeay.net
Network Security Blog » Security Advisories
http://www.mckeay.net/category/security-advisories
An American in London. The views of one man on security, privacy and anything else that catches his attention. The views expressed on this blog do not reflect the views of my employer or anyone other than myself. Archive for the 'Security Advisories' Category. Wake up to a POODLE puddle. TL:DR – Disable SSL immediately. The POODLE bites: Exploiting the SSL 3.0 Fallback. 8211; From the discoverers at Google. POODLE Attacks on SSLv3. 8211; At Imperial Violet, always a good resource for SSL. Why get lost in...
medianama.com
Indian Govt probing unauthorised digital certificates issued by NICCA - MediaNama
http://www.medianama.com/2014/07/223-indian-govt-unauthorised-digital-certificates-nicca
Research & Numbers. Policy & Legal. Mergers & Acquisitions. Pemex Global Consultancy PHP Developer HTML/CSS/Javascript (1-4 yrs). Interns for Video Making. Android and Web Developer. Income opportunity For Freshers Spend 2 To 4 Hrs Nd Earn Weekly Payout Of 6k To 8k. Privacy concerns in the Aadhaar Act, 2016. Players and playing fields in the Internet age - Ajay Shah. The bar for startup CEOs is much higher now - Anand Lunia. Implications of the US-India Cyber Relationship Framework. TechCrunch launches n...
en.wikipedia.org
Certificate authority - Wikipedia, the free encyclopedia
https://en.wikipedia.org/wiki/Certificate_authority
From Wikipedia, the free encyclopedia. Is an entity that issues digital certificates. A digital certificate certifies the ownership of a public key by the named subject of the certificate. This allows others (relying parties) to rely upon signatures. Or on assertions made about the private key that corresponds to the certified public key. In this model of trust relationships, a CA is a trusted third party. PKI) schemes feature CAs. Offline Root Certificate Authorities. Which is a non-profit business, iss...
eff.org
Launching in 2015: A Certificate Authority to Encrypt the Entire Web | Electronic Frontier Foundation
https://www.eff.org/deeplinks/2014/11/certificate-authority-encrypt-entire-web
Skip to main content. Defending your rights in the digital world. November 18, 2014 By Peter Eckersley. Launching in 2015: A Certificate Authority to Encrypt the Entire Web. Today EFF is pleased to announce Let’s Encrypt. A new certificate authority (CA) initiative that we have put together with Mozilla, Cisco, Akamai, IdenTrust, and researchers at the University of Michigan that aims to clear the remaining roadblocks to transition the Web from HTTP to HTTPS. Surveillance and tracking by governments.
blog.ejbca.org
EJBCA - Open Source Enterprise PKI: Certificate Transparency with EJBCA Enterprise
http://blog.ejbca.org/2014/06/certificate-transparency-with-ejbca.html
Tech Blog for EJBCA. Open Source PKI by PrimeKey. Tuesday, June 3, 2014. Certificate Transparency with EJBCA Enterprise. As of the release of version 6.0.4. EJBCA Enterprise now supports Certificate Transparency. Google Initiative to Increase https Security. Certificate Transparency (CT) is an initiative by Google to increase security and auditability of the https ecosystem itself. These important aims are accomplished by having CAs. CA services using a software such as EJBCA) issue TLS. Will likely be a...
planet.openminds.be
Planet Openminds » vanimpe.eu
http://planet.openminds.be/vanimpe.eu
Planet Openminds vanimpe.eu. 52 Sails - sail and yachting photo's. Steven and Vicky's blog. DefV}'s rant - Jan's Home. CC De Schakel Waregem - In de ccoulissen. MacHulpje: Mac tips en tricks. This site contains blogposts, newsitems and more from the Openminds. Community. If you have a blog or newssite and want your articles to appear here, just contact us. Use Certificate Transparency for OSINT and passive reconnaissance. 2016, 9:00am CEST by admin. The Dark Side of Certificate Transparency. Typically ho...