This post dissects some of the false and misleading statements that Google has been making publicly about their project called Certificate Transparency (CT).
It shows how undetected MITM attacks still remain possible even if CT becomes widely deployed. http://blog.okturtles.com/2014/09/the-trouble-with-certificate-transparency/ Thanks for reading! Greg -- Please do not email me anything that you are not comfortable also sharing with the NSA.
-- Liberationtech is public & archives are searchable on Google. Violations of list guidelines will get you moderated: https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, change to digest, or change password by emailing moderator at compa...@stanford.edu.
