Anyone know of any good linux based certificate chain tools for diagnosing issues? Things that show the chain of trust, history of the certificate, or issues with revocation lists? #secops #certificates #certificateauthority

#GoDaddy sat on this breach for close to two months. Had there not been any reporting requirement in their 10-K would they have reported it? Also GoDaddy is a #CertificateAuthority

https://aboutus.godaddy.net/newsroom/company-news/news-details/2023/Statement-on-recent-website-redirect-issues/default.aspx

so. die nächste version meiner lösung zur verwaltung einer #publickeyinfrastructure #pki kommt langsam in die Puschen: tests mit schlüsseln basierend auf #ellipticcurves elliptischen kurven sehen vielversprechend aus. schon bald werden diese algorithmen bei der erstellung einer neuen #certificateauthority auswählbar sein. informationen über die letzte freigegebene version finden sich hier: https://elbosso.github.io/expect_dialog_ca_version_2_3_0.html#content

There are only two #webservices without #ssl remaining, which I'll switch too. #pihole, my #nas and #opnsense is serving their pages using ssl already. #smallstep #pki #ca #certificateauthority #selfhosting #docker

Just in case you want to create you own #CertificateAuthority for a non connected domain like "test" or a subdomain that is only used internally I created a how to blog article for the #checkmk blog. My colleague Timo was so nice to format it and put it online today: https://checkmk.com/blog/how-become-your-own-certificate-authority

Why digital certificates are critical to 5G security - As 5G gains traction, service providers need to be able to trust their networks’ security... https://feeds.feedblitz.com/~/722604452/0/thesecurityledger~Why-digital-certificates-are-critical-to-G-security/ #certificateauthority #digitalcertificates #digitalcertificate #wirelessnetworking #internetofthings #vulnerabilities #technologies #contributed #dataprivacy #networking #topstories #wireless #opinion #reports #nokia #pki #5g

So a root CA has really shady owners also peddling malware. Not a good look. Question is how the next one is going to be spotted, when the malicious actors don't make such blatant mistakes?

https://www.washingtonpost.com/technology/2022/11/30/trustcor-internet-authority-mozilla/

#certificateauthority #spyware

#CertificateAuthority e-Tugra discovered to be using default admin passwords on production system: https://ian.sh/etugra

Not just "still configured by accident", but actually *using* them for day-to-day business. And posting them on a public website, too.

State-sponsored hackers in China compromise certificate authority - Enlarge (credit: Getty Images)

Nation-state hackers based in C... - https://arstechnica.com/?p=1898061 #certificateauthority #billbug #biz&it

State-sponsored hackers in China compromise certificate authority https://arstechnica.com/?p=1898061 #certificateauthority #billbug #Biz&IT

State-sponsored hackers in China compromise certificate authority

https://arstechnica.com/?p=1898061

#certificateauthority #billbug #Biz&IT

An interesting read on the TrustCor CA saga reported by the Washington Post, and a look at the importance of trust, from Cory Doctorow: https://pluralistic.net/2022/11/09/infosec-blackpill/#on-trusting-trust #infosec #certificateauthority #security

Explanations for lay folk: Certificate Authority

What is a #CertificateAuthority (CA)? It is like a computer version of a notary. Your computer has lists of CAs it assumes are trustworthy for certain actions. When you connect to Amazon.com's web server, and you want to be sure it is who it says it is, that site sends back a certificate declaring "I am Amazon.com, and I have a document signed by this CA you know and trust, to prove it".

Government Intel / Law Enforcement Contractor Doubles As Root Certificate Authority

#Infosec #cybersecurity #privacy #crypto #security #encryption #certificateauthority #lawenforcement https://www.washingtonpost.com/technology/2022/11/08/trustcor-internet-addresses-government-connections/

What SolarWinds Tells Us About Securing the Software Development Supply Chain - The recent SolarWinds attack highlights an Achilles heel for enterprises: software update... https://feeds.feedblitz.com/~/654147256/0/thesecurityledger~What-SolarWinds-Tells-Us-About-Securing-the-Software-Development-Supply-Chain/ #applicationdevelopment #certificateauthority #softwaredevelopment #digitalcertificate #cybersecurity #technologies #codesigning #supplychain #solarwinds #topstories #companies

Il y a quelques jours, j'ai écris un article sur les CA dans #Kubernetes pour ma boîte, en anglais.
Mais je ne pouvais pas ne pas penser à mes amis francophones alors je l'ai réecris en français sur mon blog perso ;-)

RT @zwindler_rflx@twitter.com

REX : mettre à jour la #CertificateAuthority de votre cluster @kubernetesio@twitter.com https://blog.zwindler.fr/2021/02/15/mettre-a-jour-le-ca-de-kubernetes-the-hard-way/

🐦🔗: https://twitter.com/zwindler_rflx/status/1361223915385806855

As promised, a story about @kubernetesio@twitter.com, #CertificateAuthority @hashicorp@twitter.com #Vault and #NoDowntimeAllowed
Hope you like it

RT @DeezerDevs@twitter.com

Imagine you need to renew your Kubernetes CA. But its expiration date is near, and your end users must not be affected. This could be the synopsis of a nerve-racking disaster movie! Luckily, @zwindler@twitter.com and our Infra team found a plan to avoid a catastrophe: https://deezer.io/updating-kubernetes-ca-certificates-the-hard-way-f9518108791d?source=friends_link&sk=3b166d9d14104699a291eedc4d2886ec

🐦🔗: https://twitter.com/DeezerDevs/status/1359896425539248134

Let’s Encrypt Pushes Back Deadline to Revoke Some TLS Certificates - While 1.7 million of the certificates potentially affected by a CAA bug have already been replaced... more: https://threatpost.com/lets-encrypt-pushes-back-deadline-to-revoke-some-tls-certificates/153456/ #transportlayersecurity #certificateauthority #certificates #websecurity #letsencrypt #internet #websites #caabug

Let's Encrypt Revoking 3 Million TLS Certificates Issued Incorrectly Due to a Bug https://thehackernews.com/2020/03/lets-encrypt-certificate-revocation.html #FreeSSLTLSCertificate #CertificateAuthority #websitesecurity #serversecurity #SSLCertificate #cybersecurity #LetsEncrypt #TSLServer