zlacker

[parent] [thread] 2 comments
1. JoshTr+(OP)[view] [source] 2025-12-18 16:25:35
> Why worry about E2E encryption, in theory just need a cert issued from a vast array of CAs or intermediates.

Certificate Transparency thankfully means this is a tool a government could only use once if at all, and then they've burned an entire CA.

replies(1): >>Comman+Tf
2. Comman+Tf[view] [source] 2025-12-18 17:27:44
>>JoshTr+(OP)
Isn't certificate transparency opt-in, so any trusted CA could be a potential attack route.
replies(1): >>JoshTr+bm
◧◩
3. JoshTr+bm[view] [source] [discussion] 2025-12-18 17:56:46
>>Comman+Tf
Browsers now require it to consider a certificate valid. Firefox, Chrome, and Safari all require a certificate to include proof of being logged in CT logs.
[go to top]