Re: [cryptography] fyi: Sovereign Keys: an EFF proposal for more secure TLS authentication

The sovereign keys proposal, is to ensure that a website can only have one key at at time - so that the bad guys cannot get a another certificate for the same website from some highly cooperative or highly incompetent certificate authority. The proposed system seems to me overly complex and no

Re: [cryptography] fyi: Sovereign Keys: an EFF proposal for more secure TLS authentication

On 2011-11-26 05:41, =JeffH wrote: Of possible interest... Subject: [SSL Observatory] Sovereign Keys: an EFF proposal for more secure TLS authentication From: Peter Eckersley Date: Fri, 18 Nov 2011 14:31:42 -0800 To: observat...@eff.org For quite a while at EFF, we've been pondering different

[cryptography] fyi: Sovereign Keys: an EFF proposal for more secure TLS authentication

Of possible interest... Subject: [SSL Observatory] Sovereign Keys: an EFF proposal for more secure TLS authentication From: Peter Eckersley Date: Fri, 18 Nov 2011 14:31:42 -0800 To: observat...@eff.org For quite a while at EFF, we've been pondering different possible solutions to the s