<p>A recently identified and widespread configuration error has created a situation where, with the wrong attack on certain public roots, certificates could become essentially unrevokable.  As a consequence, 14 public CAs will have to revoke their OCSP certificates, many of which are also intermediates, and permanently discontinue use of their keys.  That leaves millions of active TLS, S/MIME, code signing, and document signing certificates in need of immediate replacement or they will be distrusted. Join our hosts as they explain what the problem is and what messy cleanup will be required to address these problems.</p>

A recently identified and widespread configuration error has created a situation where, with the wrong attack on certain public roots, certificates could become essentially unrevokable. As a consequence, 14 public CAs will have to revoke their OCSP certificates, many of which are also intermediates, and permanently discontinue use of their keys. That leaves millions of active TLS, S/MIME, code signing, and document signing certificates in need of immediate replacement or they will be distrusted. Join our hosts as they explain what the problem is and what messy cleanup will be required to address these problems.

Root Causes 106: Massive Intermediate Certificate Distrust Is on the Way

Digital certificate industry veterans Tim Callan and Jason Soroko explore the issues surrounding digital identity, PKI, and cryptographic connections in today's dynamic and evolving computing world. Best practices in digital certificates are continually under pressure from technology trends, new laws and regulations, cryptographic advances, and the evolution of our computing architectures to be more virtual, agile, ubiquitous, and cloud-based. Jason and Tim (and the occasional guest subject matter expert) will help you stay current on developments in this essential technology platform and to understand the whys and wherefores of popular Public Key Infrastructures.

Share Root Causes 106: Massive Intermediate Certificate Distrust Is on the Way

Sign up to save your podcasts

Root Causes 106: Massive Intermediate Certificate Distrust Is on the Way

Root Causes 106: Massive Intermediate Certificate Distrust Is on the Way

More shows like Root Causes: A PKI and Security Podcast

Planet Money

Hacked

Security Now (Audio)

WSJ Tech News Briefing

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

Risky Business

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

CyberWire Daily

Darknet Diaries

Hacking Humans

CISO Series Podcast

The Peter Attia Drive

The Journal.

All-In with Chamath, Jason, Sacks & Friedberg

Risky Bulletin