We like transparency and we're a CA, hackers hack all night and we log all day

www.theregister.co.uk | 5/15/2019 | Staff
bab_ohhbab_ohh (Posted by) Level 3
Click For Photo: https://regmedia.co.uk/2019/05/15/trees_shutterstock.jpg

Let’s Encrypt has wheeled out a new certificate transparency log called Oak, which is funded for a year by the certificates arm of Sectigo (formerly known as Comodo).

As well as the obvious corporate social responsibility impact for Sectigo, it helps ease pressure on an increasingly important piece of internet security infrastructure, the firm told El Reg.

Certificate - Transparency - Logs - CT - Logs

Certificate transparency logs, or CT logs, at their simplest are records of to whom SSL certificates were issued to. The idea is to minimise the number of “mistakenly issued certificates or certificates that have been issued by a certificate authority (CA) that’s been compromised or gone rogue,” as the Certificate Transparency project explains.

In addition, public CT logs allow domain owners and users alike to check whether SSL certs have been issued by mistake. All of that is baked into browsers, though the basic infrastructure is still there for verification with the Mk.I human eyeball.

CT - Log - Providers - Volume - Requests

There are relatively few CT log providers who can handle the extremely high volume of requests that comes with maintaining a log specified in Firefox, Chrome, Edge or IE,...
(Excerpt) Read more at: www.theregister.co.uk
Wake Up To Breaking News!
"Those who stand for nothing fall for anything." - Alexander Hamilton
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!