What is the Certificate Transparency Log?
Vložit
- čas přidán 22. 04. 2021
- After the certificate authority DigiNotar was compromised in 2011, Ben Laurie, Adam Langley and Emilia Kasper designed the first certificate transparency log to fix flaws in the certificate authority ecosystem and prevent unauthorized certificate issuance. Test certificates belonging to your domain using discovery.cryptosense.com (free).
More on certificate vulnerabilities:
- The Mimecast certificate attack: • The Mimecast Certifica...
- Why do we still have certificate outages in 2021?: • Why do we still have c...
- Deep dive Certificate Outages webinar (on-demand): cryptosense.com/webinars/avoi...
- Free CT Log Certificate Search Tool from Sectigo (formerly Comodo CA): crt.sh/
/////
Find out more about Cryptosense: cryptosense.com/
Follow us on Twitter: / cryptosense
/////
Cryptosense CEO Dr. Graham Steel was formerly an academic researcher before founding Cryptosense in 2013. His cryptography expertise is the basis for the company's 'Analyzer' technology which allows customers to protect themselves against losing sensitive data. - Věda a technologie
The man knows his stuff. Excellent resource.
This video is CERTIFIABLY great
Great concise video, subscribed!
Needs some pictures/graphics
We're going to try that in the next video..
Earlier, Life before CT - the trust is with Trust store, but with CT I believe it's with SCT/CT Log. How exactly browser or a mobile client verifies the certificate/SCT provided by the server is legitimate?
There's a good explanation of this by Nick Sullivan on the Cloudflare blog blog.cloudflare.com/introducing-certificate-transparency-and-nimbus/