Click For Photo: https://regmedia.co.uk/2019/05/15/trees_shutterstock.jpg
Let’s Encrypt has wheeled out a new certificate transparency log called Oak, which is funded for a year by the certificates arm of Sectigo (formerly known as Comodo).
As well as the obvious corporate social responsibility impact for Sectigo, it helps ease pressure on an increasingly important piece of internet security infrastructure, the firm told El Reg.
Certificate - Transparency - Logs - CT - Logs
Certificate transparency logs, or CT logs, at their simplest are records of to whom SSL certificates were issued to. The idea is to minimise the number of “mistakenly issued certificates or certificates that have been issued by a certificate authority (CA) that’s been compromised or gone rogue,” as the Certificate Transparency project explains.
In addition, public CT logs allow domain owners and users alike to check whether SSL certs have been issued by mistake. All of that is baked into browsers, though the basic infrastructure is still there for verification with the Mk.I human eyeball.
CT - Log - Providers - Volume - Requests
There are relatively few CT log providers who can handle the extremely high volume of requests that comes with maintaining a log specified in Firefox, Chrome, Edge or IE,...
Wake Up To Breaking News!
"Those who stand for nothing fall for anything." - Alexander Hamilton