Certificate Transparency's improved gossip protocols show promise

After publishing our Certificate transparency on blockchains we learned of a recently updated IETF draft proposal that updates how Certificate Transparency (CT)1 gossip protocols work. The proposal now incorporates the technique of sharing SCTs and certificates between clients and servers that we discussed in our September post […]

Certificate transparency on blockchains

This week Google learned of another batch of fraudulently issued certificates for several of their domains. At the end of the post they made a renewed call for Certificate Transparency. In this post, we'll use the acronym CT to refer to Google's implementation of the general […]

The Trouble with Certificate Transparency

Update: March 25, 2015, see also: Certificate transparency on blockchains Ben Laurie, project lead for Google's Certificate Transparency (CT), recently published an article wherein he compared CT against various efforts to secure Internet communication world-wide from Man-In-The-Middle Attacks (MITM), including DNSChain. In it, he made several claims about […]