-
Nueva tecnología de revocación en
#webPKI con#CRLite en@firefox. https://blog.mozilla.org/security/2020/01/09/crlite-part-1-all-web-pki-revocations-compressed/ … -
Can one shrink the
#WebPKI's certificate state to be as small as a photo? Mozilla Security Engineering is publishing a series of blog posts about#CRLite, a technology to compress and push revocations to@firefox users, now in@FirefoxNightly https://blog.mozilla.org/security/2020/01/09/crlite-part-1-all-web-pki-revocations-compressed/ …pic.twitter.com/Sz8wpj4o2H
-
Domain validation support will be integrated into CT logs and CAs will no longer be needed for
#webpki. CT logs already serve as root of trust anyway. https://twitter.com/FiloSottile/status/1198487261421154304 … -
We're about to start an experiment with the new IETF draft for Delegated Credentials in
#TLS in@FirefoxNightly together with@Cloudflare, giving another path to short-lived certs on the#WebPKI@ThylaVdMerwe https://blog.mozilla.org/security/2019/11/01/validating-delegated-credentials-for-tls-in-firefox/ …Prikaži ovu nit -
The proper way to read the BRs is to interpret them with a full understanding of the history and intent of each requirement. Also, the proper way to read the BRs is to interpret them exactly as written without any regard for the intent and history of each requirement.
#webpki -
Another nail into the coffin of
#x509 based#webpki -#Firefox 69 removed keygen element support
-https://groups.google.com/forum/#!topic/mozilla.dev.platform/SAh1b1R5lrY … -
Think that crypto means
#WebPKI,#WebAuthn,#TLS13? So do we. Join our team!https://twitter.com/ThylaVdMerwe/status/1159521032430129157 … -
Looks like there is a new root CA in the Microsoft Root store, based in South Africa, TrustFactory - https://docs.microsoft.com/en-us/security/trusted-root/august2019 …
#webpki -
Semi-Breaking - google/Android will remove current and reject proposed
#DarkMatter roots as well#WebPKI#Infosec -
#Kazakhstan has begun to use their root CA (rejected for inclusion in '16) to force all resident internet users users to install their certs to access the internet, effectively abusing it in a MitM attack.#webpki#infosechttps://groups.google.com/forum/#!topic/mozilla.dev.security.policy/wnuKAhACo3E … -
-
WOAH. This is a very significant preliminary decision for the
#WebPKI env made by the Wayne from#Mozilla Root Store: the#DarkMatter TSP subordinate CAs is requested to be distrusted, and pending inclusions denied. This is huge and, from my side, very much appreciated. -
Clearlake Capital Group and TA Associates to Make a Strategic Growth Investment in
@DigiCert - https://www.digicert.com/news/clearlake-capital-group-ta-associates-make-strategic-investment-in-digicert/ …#webpki#tlsPrikaži ovu nit -
"I believe that the issues I have documented demonstrate a basic inability to operate effective issuance controls. " - https://groups.google.com/forum/?pli=1#!topic/mozilla.dev.security.policy/rmU311hOIIc …
#webpki#notagain -
The beautiful people at MOSS, Mozilla's Open Source Support, decided to give a grant for Let's Encrypt and Stapling improvements in Apache! https://lists.apache.org/thread.html/ea992d96f22a0f9dabdd99b0c92b9019d616720172cf9a573991679f …@<http://dev.httpd.apache.org >
#webpki#ossPrikaži ovu nit -
One of the nuts moments at last nights
#DEFCON201 meet up@FOSSfirefighter awesome talk on#WebPKI was so "1337 underground Black Hat" that a video of it on the#DC201@tiktok_us was banned due to "illegal content" after it going viral for 3 minutes. -
TOMORROW is the
#DEFCON201 @defcongrouos meet up at@WHEALTHANDCO@JC_Gov from 7pm to 10pm.@shmoocon Live Stream,@FOSSfirefighter on#WebPKI and more#DC201 shenanigans! Details:https://medium.com/@defcon201/defcon-201-january-2019-shmoo-zing-around-905955bcbf5a … -
Some things just never change http://hecker.org/mozilla/business-of-cas … #2004
#webpki -
Do you find cryptography and PKI interesting? Do you want to help secure and operate Google's publicly trusted CAs? Are you in Pittsburgh or New York? DM me.
#WebPKI -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.