[messaging] The Trouble with Certificate Transparency

Tao Effect contact at taoeffect.com
Wed Sep 24 11:08:58 PDT 2014

I've finally taken the time to explain via diagrams and many words how undetected MITM attacks can happen with Certificate Transparency.

As this topic has been brought up on this list a few times, and I've received requests from some to elaborate in detail, I thought I'd share it here. This post is also a direct response to Ben Laurie's recently published ACM article [1].

Many thanks go to Zaki (@zmanian), Simon (@simondlr) and others to reviewing it prior to publication:


Kind regards,

[1] http://queue.acm.org/detail.cfm?id=2668154

Please do not email me anything that you are not comfortable also sharing with the NSA.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20140924/b1444d9f/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20140924/b1444d9f/attachment.sig>

More information about the Messaging mailing list