We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

CAcert: Trust - the root of evil?!

6
 Cite
 Share
 Download
 Purchase
Logo of FOSDEM VZWFOSDEM VZW
 Heintel, Benedikt

Formal Metadata

Title
CAcert: Trust - the root of evil?!
Title of Series
Number of Parts
84
Author
License
CC Attribution 2.0 Belgium:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date2013
LanguageEnglish
Production Year2012

Content Metadata

Subject Area
Genre
Abstract
In a highly connected world like ours is trust one of the most important assets. But what if the root to trust is not trustworthy? 2011 was the year where one Certificate Authority (CA) after the other came to fall. The cases of the Dutch DigiNotar and the Malaysian DigiCert are the best know. The system of commercial CAs depends on a wrong understanding of liability and trust. CAcert's web of trust tries to overcomes the liability issues by trusting a group of trusted people wherein each individual is liable for its own action. This talk enlightens why most commercial CAs are not trustworthy by default, what we can learn from 2011's cases, what makes CAcert different, why CAcert is not in the browsers by default and what we do to make it happen.