 |
|
| FriendFeed is the easiest way to share online. Learn more » |
Allen L. Kelly › Comments
VeriSign SSL Hackable - Comodo Exposes, VeriSign Denies - http://digg.com/securit...
"[Video] SSL in Plain English http://www.verisign.com/ssl... ..."
- Allen L. Kelly
VeriSign SSL Hackable - Comodo Exposes, VeriSign Denies - http://digg.com/securit...
"Here is the most recent blogpost from VeriSign's Tim Callan: https://blogs.verisign.com/ssl-blo... ..."
- Allen L. Kelly
Can someone try https://ceac.state.gov/genniv and tell me if the SSL certificate is trusted by their browser?
Ca marche bien à Natixis sur mes 3 browsers (trusted by VeriSign, Inc Expire le 12/09/2010)
- Pierre
Thanks Pierre!
- Laurent Tu
from email
It works in Internet Explorer, Safari, and Firefox. #verisign
- Allen L. Kelly
2010 January « Cryptopath - http://nahi.posterous.com/2010-ja...
Kazutaka Ogaki and Kenji URUSHIMA liked this
An even closer study of the certificate used by iPCU revealed that it only contains Signature in key usage. via cryptopath.wordpress.com - VeriSignが出した証明書は「/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=www.verisign.com/repository/RPA Incorp. by Ref.,LIAB.LTD(c)98/OU=Persona Not Validated/OU= ... [end]
- NaHi
from Posterous
前半のshortcomingとか余計なこと書くからわかりにくいw
- NaHi
from m.ctor.org
iPhoneで、http proxyとtrust anchor設定をいじるmobileconfig fileの更新が、iPhoneのデフォルトのtrusted storeからたどれる、KUにdigitalSignatureが入ってる証明書で署名したものなら、いかにもgreenっぽい画面出して書き換えられる、という話のようです。 > @kjur
- NaHi
from m.ctor.org
うーむ、Posterousに切られると困るな: VeriSignが出した証明書は「/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=www.verisign.com/repository/RPA Incorp. by Ref.,LIAB.LTD(c)98/OU=Persona Not Validated/OU=Digital ID Class 1 - Netscape/CN=Apple Computer/emailAddress=apple.iphone.updates@gmail.com」とはいえ確かにVeriSignにどうこうできる話じゃない。MacOS Xに、Windowsのcertificate propertyみたいな分類がなければ、EVとかかなあ。
- NaHi
from m.ctor.org
VeriSign blogs about the new iPhone vulnerability - http://bit.ly/iPhoneCert
- Allen L. Kelly
Nice URL. I found the Cryptopath site through the blog. Hoping Apple employ EV SSL solution. :-)
- NaHi
from m.ctor.org
EV SSL always helps
- Allen L. Kelly
iPhones Vulnerable to New Remote Attack | threatpost - http://threatpost.com/en_us...
I like the way the writer chose to portray this as an iPhone vulnerability rather than a "Verisign screwing up it's job as a CA"
- Chris Adams
The Cryptopath blog, which unveiled the flaw, stated, "VeriSign is not to blame for this in any way."
- Allen L. Kelly
Good point - the summary implied that this was closer to the infamous mistake with a Microsoft code signing certificate. I'm still a bit leery of the no-review test certificates but Apple definitely should have restricted this feature further than a simple "Signed by any root CA" check.
- Chris Adams
Can anybody tell me which "Security approval label" to choose (like Truste, Verisign) and why???
N.Onur ATAHAN, Çağrı Yardımcı and Cevdet Aykan DEMİR liked this
verisign
- Çağrı Yardımcı
1- verisign 2-global sign ikisi de olabilir, ikisi de otorite olarak geçer.
- tevfik bülent öngün
Sevgili FF sakinleri; bildiginiz "güvenlik onay etiketleri"nden hangisini seçtiğinizi/seçeceğinizi ve nedenini belirtebilir misiniz?
- Özra Peker
Turkiyede temsilcisi olan bi tane sec. cok detayli bakmadim ama Verisign bu is icin iyi gorunuyor. Para konusunda Comodo sanirim en uygunu. Ve onlar da iyidir.
- Alkım Gözen
Zafer Bey size bir direkt mesaj gönderdim.
- Özra Peker
bülentin de soylediği gibi basta verisign olmak üzere globalsign guvenlık sertıfıkasyonu konusunda otorite olarak gecen fırmalar..
- Çağrı Yardımcı
Global Sign kullanıyorum yıllardır, hiç sıkıntı çekmedim.
- Sevil Mert ~ E-lmayra
VeriSign's Secured Seal is the most recognized and trusted "security label" on the Web. Here is a great educational resource to help you stay safe online - https://www.TrustTheCheck.com
- Allen L. Kelly
Thanks everybody responding!!! Cok tesekkur ederim arkadaşlar...
- Özra Peker
Researcher demonstrates SSL attack - http://digg.com/securit...
"Tim Callan, vice president of product marketing at VeriSign, responds to the Black Hat presentations in his new SSL blogpost: https://blogs.verisign.com/ssl-blo... ... He fills some of the holes that Marlinspike and Kaminsky dug. @allenkelly"
- Allen L. Kelly
Researchers exploit SSL and domain flaws - http://digg.com/securit...
"Tim Callan, vice president of product marketing at VeriSign, responds to the Black Hat presentations in his new SSL blogpost: https://blogs.verisign.com/ssl-blo... ... He fills some of the holes that Marlinspike and Kaminsky dug. @allenkelly"
- Allen L. Kelly
@socialtoo In IE7, http://socialtoo.com/twitter comes up as a Suspicious phishing website.
Interesting - I wonder if it's because Twitter's in the URL. I'll look at that.
- Jesse Stay
Not sure, but those warnings are never good. Let me know and good luck!
- Allen L. Kelly
allenkelly | Twitter Grader - http://twitter.grader.com/allenke...
As of December 2008, I am a 90...which = an "A"
- Allen L. Kelly
NCSAM: Personal information and how to protect it - http://digg.com/securit...
"To learn more about VeriSign and Extended Validation SSL, please contact me at alkelly@verisign.com"
- Allen L. Kelly
Basketball Head Plant (OUCH!) - http://digg.com/televis...
"Hilarious!"
- Allen L. Kelly
Other ways to read this feed:
