diff options
authorSergey Matveev <>2017-07-13 11:07:19 +0300
committerSergey Matveev <>2017-07-13 11:07:19 +0300
commitd722fb300a046783c9bf7bec055c18dcb828f8ee (patch)
parente92c0325dcd26f3d85024ad6ee3d72d493c6afc5 (diff)
Компрометация известных не китайских CA
Недавно были новости о том что WoSign и StartCom все из себя плохие CA и их отзывают и не доверяют (c1d991e20528f6b0e84b06cda975543a69a502d2). Вот тут кое какой список нашёл о том что куда более крупные и известные CA совершали куда более серьёзные нарушения и факапы, но им ничего за это не было: Symantec Issues Rogue EV Certificate for Fraudulent certificate for Google domains found after mistake by turkish CA VeriSign issues two digital certificates in the software giant's name... On July 10, 2011, an attacker with access to DigiNotar's systems issued a wildcard certificate for Google. In 2009 Microsoft MVP Michael Burgess accused Comodo of issuing digital certificates to known malware. On March 23, 2011, Comodo posted a report that 8 days earlier, on 15 March 2011, a user account with an affiliate registration authority had been compromised and was used to create a new user account that issued nine certificate signing requests.
0 files changed, 0 insertions, 0 deletions