>> Google is currently communicating about how they will use SSL False Start >> to "accelerate the web", even if it means breaking a small fraction of >> incompatible site (they will use a black list that should mitigate most of >> the problem). >> See http://news.cnet.com/8301-30685_3-20018437-264.html >> > > Interestingly the folks at CNET made a huge mistake in their calculations > since only a fraction of the 227 million web sites are SSL secured. Of that > 0.05% appears to be rather tiny, certainly not the 114,000 sites they > claimed in the article.
>From the EFF SSL Observatory (pretty recent data): 10.8M started an SSL handshake 4.3+M used valid cert chains 1.3+M distinctvalid leaves so that's more like 2000 sites that will be broken assuming Google's numbers are legit (of course if those are the top 500 sites it would be rather painful, but a blacklist of 2000 entries is pretty simple to maintain). So he's only off by a factor of 50 or so. > Signer: Eddy Nigg, StartCom Ltd. -- Kurt Seifried [email protected] tel: 1-703-879-3176 -- dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
