EFF System To Warn of Certificate Breaches

← Back to Stories (view on slashdot.org)

EFF System To Warn of Certificate Breaches

Posted by samzenpus on Wednesday September 21, 2011 @08:47AM from the early-warning-system dept.

snydeq writes "With its distributed SSL Observatory, the Electronic Frontier Foundation hopes to detect compromised certificate authorities and warn users about attacks, InfoWorld reports. 'The EEF, along with developers at the Tor Project and consulting firm iSec Partners, has updated its existing HTTPS Everywhere program with the ability to anonymously report every certificate encountered. The group will analyze the data so that it can detect any rogue certificates — and by extension, compromised authorities — its users encounter, says Peter Eckersley, technology projects director for the EFF.'"

5 of 35 comments (clear)

Min score:

Reason:

Sort:

We'll see by L1B3R4710N · 2011-09-21 08:50 · Score: 3, Insightful

Sounds really good on paper (or, for the literal ones here, on webpage), but we'll see how it works in practice. I hope it does what it hopes to do, but who knows?

--
"...the number of UNIX installations has grown to 10, with more expected..." - Dennis Ritchie/Ken Thompson, 1972
Spelling by uigrad_2000 · 2011-09-21 09:01 · Score: 2

'The EEF, along with developers
I know that abbreviation is long and complex, but since this article is mostly about them, can't you at least get it right in the summary?

--
Free unix account: freeshell.org
Re:HTTPS Everywhere by MetalliQaZ · 2011-09-21 09:01 · Score: 3, Insightful

I know Firefox is unpopular lately, but among the major browsers it stands out for Add-on support. Please direct complaints to MS/Google/Opera/etc.
I really love the HTTPS Everywhere tool, and I'm glad to see this news. Perhaps it can become popular enough to trigger "ports" to other browsers. EFF will also gladly accept your donations, long with which you could include a request for chrome/ie/opera support.

--
"Here Lies Philip J. Fry, named for his uncle, to carry on his spirit"
Re:If only by MetalliQaZ · 2011-09-21 09:03 · Score: 2

Yes. They defend everyone's rights, including hackers and including you.

--
"Here Lies Philip J. Fry, named for his uncle, to carry on his spirit"
Re:HTTPS Everywhere by RulerOf · 2011-09-21 09:31 · Score: 2

IE has had plugin support for a decade, how do you think the Google Toolbar works on IE?
If it's anything like 99% of the plugins I find on most peoples' computers when I work on them, it's probably an absolute pile of shit :P

Kidding aside, I almost cried a tear of joy when I read that Chrome actually can't support a toolbar.

I felt the same way when I saw a Chrome extension inject Javascript into every web page on a computer to create a frame at the top with toolbar-like features. Oh well.

--
Boot Windows, Linux, and ESX over the network for free.