Slashdot Mirror

← Back to Stories (view on slashdot.org)

Certificate Blunders May Mean the End For DigiNotar

Posted by timothy on from the web-of-trust-works-by-breaking dept.

Certificate Authority DigiNotar is having a rough time of it. dinscott writes with these words from Help Net Security: "After having its SSL and EVSSL certificates deemed untrustworthy by the most popular browsers, around 4200 qualified certificates — i.e. certificates used to create digital signatures — issued by the CA are currently in the process of being revoked and their holders notified of the fact by the Dutch independent post and telecommunication authority (OPTA). Starting from yesterday, OPTA has terminated the accreditation of DigiNotar as a certificate provider for 'qualified' certificates. The revocation of this accreditation also makes DigiNotar unqualified to issue certificates under the PKIoverheid CA."

2 of 128 comments (clear)

  1. The Price Of Trust by Wiz-Hum-Mal-Cha · · Score: 5, Insightful

    If getting compromised and issuing bad certificates *didn't* cost you your position of trust, then what credibility would the certification process have anyway?

  2. And good riddance to them... by SigILL · · Score: 5, Insightful

    If you won't properly separate your security-critical systems from your Internet-facing systems, or cannot even keep them from being rooted multiple times, you have no business being a CA.

    Honestly, it's understandable DigiNotar didn't want this information out: bankrupcy is inevitable now, and that's bad for shareholder value.

    --
    Error: password can't contain reverse spelling of ancient Chinese emperor