The state-level attack on the SSL CA security model

Tony Finch dot at
Thu Mar 24 09:53:42 CDT 2011

Harald Koch <chk at> wrote:
> This story strikes me as a success - the certs were revoked immediately, and
> it took a surprisingly short amount of time for security fixes to appear all
> over the place.

It would have been much easier if certificate revocation actually worked

f.anthony.n.finch  <dot at>
Viking, North Utsire, South Utsire: Westerly veering northerly, 4 or 5,
occasionally 6 at first. Moderate or rough. Occasional rain. Moderate or good,
occasionally poor at first.

More information about the NANOG mailing list