Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- [SSL] Comodo breach in plain English?
- Gilles Ganault
March 28, 2011, 11:07 am
rate this thread
I'd like to understand what the recent breach at Comodo means in
I only know that SSL is based on the two-key encryption method, where
the server sends its public key that the browser will use to encrypt a
session key that will be used to encrypt any HTTPS connection.
If I got it right, certificates are used to be positive that the
server the browser connects is indeed the right server, but I'm not
clear about how this part really works.
Could someone explain this in basic terms?
Re: [SSL] Comodo breach in plain English?
Certificate authorities are expected to follow their certification
policies to ensure that only Google can obtain a certificate for
www.google.com, Microsoft for live.com et cetera. This is a prerequisite
for trusting them.
In this incident, a security breach at a registration authority allowed an
attacker to issue fraudulent certificates that were nevertheless signed by
Comodo and could therefore have been used successfully to impersonate e.g.
Comodo explains the incident at
http://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html . Is there
something in particular you wonder about?
- » HPSBUX02645 SSRT100387 rev.1 - HP-UX Apache Web Server, Remote Information Disclosure, Cro...
- — Next thread in » General Computer Security
- » Re: How to get someones physical address from their IP, + a defense.
- — Previous thread in » General Computer Security