Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
Back for a limited time - Get 15% off sitewide on Slashdot Deals with coupon code "BLACKFRIDAY" (some exclusions apply)". ×

Submission + - Mozilla Debates Whether to Trust Chinese CA | Free (

timothy writes: At this Freedom to Tinker blog, Ed Felton has a thoughtful, accessible piece on the debate at Mozilla about whether Firefox, by default, should trust a Chinese certificate authority. Felton explains in clear language why this is significant, therefore controversial. An excerpt: 'To see why this is worrisome, let's suppose, just for the sake of argument, that CNNIC were a puppet of the Chinese government. Then CNNIC's status as a trusted CA would give it the technical power to let the Chinese government spy on its citizens' "secure" web connections. If a Chinese citizen tried to make a secure connection to Gmail, their connection could be directed to an impostor Gmail site run by the Chinese government, and CNNIC could give the impostor a cert saying that the government impostor was the real Gmail site.'
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Mozilla Debates Whether to Trust Chinese CA | Free

Comments Filter:

What this country needs is a dime that will buy a good five-cent bagel.