Crypto certificates impersonating Google and Yahoo pose threat to Windows users
IvanIV
Posts: 30,310
Forum Member
✭✭✭
Crypto certificates impersonating Google and Yahoo pose threat to Windows users
Looks like it's Microsoft's turn. Although it's not a bug this time, they just don't have means to revoke a subdomain of compromised certificates and they cannot revoke the root certificate without serious impact on parts of Internet that use genuine certificates from the compromised CA.
Looks like it's Microsoft's turn. Although it's not a bug this time, they just don't have means to revoke a subdomain of compromised certificates and they cannot revoke the root certificate without serious impact on parts of Internet that use genuine certificates from the compromised CA.
0
Comments
That's bad news if a certification authority has been corrupted and it sets a bad precedent. However, the problem does appear to be limited and that article reinforces what's been said elsewhere in terms of improving computer security: even if you use a Windows OS, steer clear of Internet Explorer and use one of the many alternative browsers instead.