Language Selection

English French German Italian Portuguese Spanish

Dutch CA banished for life from Chrome, Firefox

Filed under

The network breach in July that forged a near-perfect replica of a credential minted more than 200 other SSL certificates for more than 20 different domains, a top manager for Mozilla's Firefox browser said.

In stern rebuke of substandard practices at Netherlands-based certificate authority DigiNotar, Director of Firefox Engineering Johnathan Nightingale recited a litany of failures that put entire internet populations at risk. Bad enough was DigiNotar's inability to accurately account for the certificates it issued, and its six-week delay in warning Mozilla of fraudulent certificates detected in mid July, one of which spoofed the sensitive site.

Worse yet was the determination that DigiNotar's lapses resulted in “multiple reports of these certificates being used in the wild.”

rest here