Slashdot Mirror
Launching 2015: a New Certificate Authority To Encrypt the Entire Web
Peter Eckersley writes: Today EFF, Mozilla, Cisco, and Akamai announced a forthcoming project called Let's Encrypt. Let's Encrypt will be a certificate authority that issues free certificates to any website, using automated protocols (demo video here). Launching in summer 2015, we believe this will be the missing piece that deprecates the woefully insecure HTTP protocol in favor of HTTPS.
how can one verify that this future "certificate authority that issues free certificates to any website" hasn't issued a cert to the NSA for your domain? is it possible?
We already have a free certificate autority: CAcert. The problem is that their root certificate is not included by default in major web browsers. Why would that be any different? I guess since Mozilla is involved Firefox will get it. But why don't just they allow CAcert? And what about Google and Microsoft?
Yes, please. So many internet-based business models are built entirely on technical abstractions. So their is an interest in maintaining those structures as it, holding back progress. Social networks are one example. SSL certs are another. I'd rather used self-signed certs for my own stuff, but this is the closest thing that won't scare people away. We need progress, and if that means the obsolescence of some business models, so be it.
Silicon & Charybdis McLuhan Kildall Papert Kay
re: "They put the inventor of PGP in jail - Phil zimmerman."
Uh, no. He wasn't even charged, just investigated.
-- Insert witty one-liner here. --
I'm with you on your points, but can you cite when Phil Zimmerman was arrested? He was investigated back in the 90s and it was dropped without an indictment in 96 according to wikipedia.
Its based out of the US and A.
As such, I have to assume it is pre-backdoored.
Horseshit.
Some things they just keep secret.
Other things, they commit perjury and perform parallel construction to hide how they got it in the first place.
In other words, they don't need no steenking warrants, they don't need to care about the law, and will do anything they see fit.
They can take care of the pretense of following the law much later.
I'm long past believing they give a damn about needing to prove they obtained stuff legally.
Lost at C:>. Found at C.
This is a fantastic effort that will help people such as myself. I run sites across a dozen or so hosts, but they don't generate income and I really don't want to drop all that money into certificates. If I can get free certificates from a good CA then I'll gladly bump all my sites over to HTTPS.
Thank you!
Love sees no species.
Replace Cisco, and Akamai and then maybe I'll be convinced it's better than the current situation. But it's still oxymoronic service: A central authority that *REQUIRES* trust for people who don't trust anybody.
And what do you do for countries with draconian Cert laws like England? (They want a copy of your root cert)
The resulting entity would have to be incorporated in Iceland or something. FAR away from 5-eye's dragnets.
Obama's legacy: (N)othing (S)ecure (A)nywhere and (T)error (S)imulation (A)dministration
They put the inventor of PGP in jail - Phil zimmerman. Reason: simple transport encryption - even without trust - makes Fedzilla and its police state angry.
This would force the Fedzilla police state to obtain end-point warrants rather than be able to sniff the firehose.
I would rather have transport encryption than nothing. Also, even if these are back doored by the NSA, the government would have to prove how they got the information without a warrant.
This is an imperative first step.
I'm just curious here...what exactly makes you assume the government would have to prove a damn thing, even if what they are doing is illegal by our own Constitution?
Not sure what is feeding your delusions, but one thing is for certain. The government needing authority or approval to do anything to you legally or otherwise is complete bullshit.
And this "imperative" step means jack shit if the NSA has already been issued a cert.
Now prove they haven't, and you can have your first step back.
He did get put in jail, though, on other occasions. Apparently for protesting in a disruptive manner at a nuclear test site.
So technically they were right up until the part where they identified the reason for his arrest.
True, but if you can raise the cost you cut the occurrence rate. There is no law preventing them from having police officers tail every citizen, they don't because it would be prohibitively expensive.
Have Apple, Microsoft, Google and Opera all pledged to add certificates for Let's Encrypt - and not just for future browser releases? Otherwise, we lose all of our IE12, Safari, Mobile Safari, Android, Chrome, and Opera users with these certificates.
startssl.com already offers a free domain certificate. The only catch is if you need to revoke it costs $25 to do the revoke.
Now let me have my own CA for my personal domain example.com so I can sign as I want would be nice.
I expect a lot of agents to come in and stump against transport encryption. I question why on earth you wouldnt want to make it harder to sniff. Even if there is a man in the middle possibility, they need a copy of every cert. Lugging around millions of certs and trying to apply them to every flow to see if you can get into that flow sounds a lot harder than not encrypting.
Legalize the constitution. Think for yourself question authority.
I see nothing in here about how they plan to address shared web hosting. To me that's always been more of an issue than the cost of the certificate.... Current implementations of SSL requires one certificate to be bound per IP address, and there is no "hostname" request from the browser like there is with HTTP. When I can pick up a certificate for less than $20 per year, the cost of the certificate is not going to hold me back... The fact that I can't install the certificate on my "Shared hosting" website, would however.
To err is human, but to really foul things up requires a computer
Why should we believe that HTTPS (or i suppose more accurately TLS / SSL) hasn't already been compromised (i.e. by the NSA)?
Referrer leakage is exactly why it matters.
Peter predicted that you would "deliberately forget" creation 2000 years ago...
Agreed,
I don't see this as much of a solution. The Grandparent is right transport encryption is a requirement but I am not sure its first step. encryption and authentication are part and parcel. One really isn't useful without the other and might be more dangerous alone than nothing.
At least with HTTP I *know* there exists the possibility what I am receiving isn't coming from who I thought it was from, may have been undetectably altered, and others know I am viewing it. Just as anything i send, might be altered or not go where i expect it to.
The big problem today is all those shitty domain validated certs, are cheap ticket to every spammer, fraudster in the world to appear legit.. Not to mention if I can find some stored-reflected-xss or even just content injection via iframe, or img tag on a legit site say "example.com, I register a name like uberCDN.com and host the sourced content at example.com.uberCDN.com and the typical victim user will have virtually no chance to detect anything is up..
Honestly we need to solve the trust problem as step 0, than we need encryption and integrity + authentication as step 1.
Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
I thought part of the reason for the cost of certs was the identity portion of the server. It's not just encryption, it's making sure that Citibank is Citibank not Bob DeHacker. I didn't see much talking about this, just about encryption.
At some point, somebody needs to pay for identity verification. Maybe a group of companies does it for free for a Better Net, but there will be a cost someplace.
There are more technical issues than just having a trusted CA in order to do HTTPS everywhere. The big issue is the legacy one certificate per IP:Port limitation. I know that is being resolved with SNI. Unfortunately that is going to take a while because both HTTP server _and_ clients need to updated to support this. Many of the current versions of the HTTP servers already support this. I've seen lots of mobile app HTTP clients that do not. Also what about some of the aging web servers/clients where the vendor has no plans up fix / upgrade them?
No good deed goes unpunished.
What I'd rather have is sites not requiring a fuck-ton of Javascript, usually from other sites, to display anything or to work / navigate in even the simplest fashion. Content sites that use Javascript to display article text is particularly annoying.
Just my $.02.
It must have been something you assimilated. . . .
Sure, they do business selling code-signing certs, wildcard and SAN certs but I have to believe that a not insignificant part of their business is selling boring, single-name certs for web servers.
If you can suddenly get SSL certs for your web server for free and have them work like a paid certificate (wide-spread browser and device support) won't a lot of people do just this?
Or will it be some kind of "we need support" thing where people keep buying them because of corporate policy and the "only" users will be hobbyists and tinkerers who had previously used self-signed certs or none at all?
However,, a more reputable company like SquareSpace might be convinced to do something like that. From what I've seen, GoDaddy seems to have stopped trying to do things for the public good almost a decade ago.
For a certain level of technical competence, I suppose that makes sense. But there's a big RAM hit to have a CPanel instance for each customer, so the beginners would save a lot of resources to be on the same server instance.
The existing model is broken by the fact that CAs are not always trustworthy, the certs they issue to most sites are worthless as tokens of trust and the whole mechanism is a tax on security. It needs all browser makers to knock heads and make CAs for security an optional thing. Yes some sites like banks or whatever might want to pay some CA to audit their security procedures for storing a cert. For most sites it's complete overkill.
So I'm just going to send everythign in plain text instead. That'll show em.
If you need true secure communications, in as much as any such might be possible, there are other solutions for that, which don't involve any kind of central authority. (As soon as you have a central authority, you have the weakest link of attack for a larger target.)
This is encryption for everyone else, so passwords aren't being sent in the clear willy nilly by everyone who connects to their favorite sites from public wifi spots, (as an example of a real potential problem with today's security practices.)
That being said, I think they are wrong about this being the missing piece... if it were that easy to use https everyone would at least be using self signed certs by now. The standard has to be updated to reflect the reality of shared IP virtual domains. And why no TLS for http traffic yet? Even if there is no authorative signing, the web browser could then at least warn you if the cert of the a kown server suddenly changes, indicate potential MIM.
They are the encryption experts after all, who better to trust for your SSL certificate needs?
Any estimates on how much power will be needed to run the crypto so a bunch of static web sites can put an S in the URL?
I think they might do something like this: You run a program on your server. That program establishes an encrypted connection to the Let's Encrypt server (using normal SSL). The Let's Encrypt server sends a secret message over the encrypted channel. The program on your server sets up a web page with that secret on it and sends the URL back to over the encrypted connection. The Let's Encrypt server then accesses the given URL normally, and checks whether it contains the correct secret. If so, it issues a certificate for the host name contained in that URL, since you have proved that you were in control of that server.
This is immune to man-in-the-middle attacks on your side, but it would still be vulnerable to somebody who can intercept all of the traffic to the Let's Encrypt server. But perhaps they're doing something cleverer than what I describe here. (If you had multiple Let's Encrypt servers spread across the internet, then you could have multiple ones participate in the handshake. That would mean that somebody would have to intercept the traffic of all those servers in order to fool them.)
Why do this?
So that:
Why not do this?
Because it:
What might happen because of this?
It will:
Overall, it might work out well - but I doubt that App developers are going to bother so the major good reason will be ignored. App developers will STILL get it wrong, and even if they do set up https, that'll just encourage them to pass even more sensitive information to poorly secured APIs.
It's always good to be technically correct!
"First they came for the slanderers and i said nothing."
Slashdot doesn't support utf, it doesn't support ipv6. To config https would be inconsistent then.
605413? Yes, it's a prime.
I own a web hosting business. I resell certificates. I keep my prices pretty low ($10CAD for Comodo PositiveSSL, $12CAD for RapidSSL). I do this to try to push the notion that you need to encrypt everything. I'm currently planning to start giving them away with hosting packages, when paid annually.
With that said, I really don't care if technology carries us another direction and I lose those sales. I don't really make much on them anyway ($4-5 per cert).
I really like the idea of DNSSEC and DANE. From my understanding, about the only way around it would be to breach the registries.
I'm with you; I have given up believing that our government is good and is trying to do the Right Thing(tm).
they are now more concerned with covering their asses and collecting all info they can 'just in case' they need it. more CYA, really.
parallel reconstruction is a horrible thing, but they use it and so they don't care about laws anymore.
what this has done is make us, the citizens, ALSO not care about the laws. I dont' think they realized this would be the effect, but I see it, in modern attitudes. especially in the young. they don't believe our government is good or trustable anymore and that our laws are corporate self-interest based.
what goes around, comes around. and that's what bothers me the most. the 'arms race' between the gov and the citizens is growing and not de-escalating.
each generation has said 'the world is going to hell in a handbasket' but this time, they really are right.
sadly, I don't see a reversal. ;(
--
"It is now safe to switch off your computer."
What do we do to defeat SSL proxying, where there is an "official" MITM? For example, a Bob uses a web browser on his work computer, which trusts an SSL proxy appliance, because Eve (sysadmin) installed that cert into all browsers on the office machines. Alice (as the server-operator) wants to protect Bob (who doesn't know any better) from this. Key fingerprinting would allow Bob to discover this, but how can Alice verify this?
Being backed by Mozilla, Firefox will obviously support it, as will SeaMonkey and Thunderbird (since they use the same set of certs as Firefox from the same NSS tree). But how will they get the other big browser vendors to support it? In particular Microsoft (you can bet VeriSign will be using its very close relationship with Microsoft to lobby hard for MS not to support this in IE)
Here is the informative URL, which explains how validation and automation is handled: https://letsencrypt.org/howitworks/technology/
This is an absolutely fantastic idea.
Good enough for me.
Did anyone ever consider that this project is already in the NSA's pockets? Or, if not, that coercing this new authority (under terrorists laws, and NDA) will only make it 10x easier for the NSA to break into any communication, just busting the balls of a conveniently single cert authority?! Sigh. Anyone in support of this proposal either works for the NSA, or is a blithering idiot deserving of daily monitoring.
By the way, the EFF is backing this encryption effort. Good to see moderation quality here is right inline with the oligarchical collectivist snowden-chasing "Google NSA AOL Time Warner Taco Bell US Government"
Legalize the constitution. Think for yourself question authority.