1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Chinese Certificate Authority 'mistakenly' gave out SSL Certs for GitHub Domains

Discussion in 'The Hacker News' started by RSS, Aug 29, 2016.

  1. RSS

    RSS New Member Member

    A Chinese certificate authority (CA) appeared to be making a significant security blunder by handing out duplicate SSL certificates for a base domain if someone just has control over its any subdomain. The certificate authority, named WoSign, issued a base certificate for the Github domains to an unnamed GitHub user. But How? First of all, do you know, the traditional Digital Certificate
    [​IMG]
    [​IMG]

    Continue reading...
     

Share This Page