Bonum Certa Men Certa

Certificate Authorities (CAs) Are Serving the Authorities, Not You

posted by Roy Schestowitz on Sep 07, 2024,
updated Sep 08, 2024

Footprints In The Sand

The centralised CAs "model" is not working

THE so-called "security model" we have is not working for the vast majority of us; the oligarchs control the chains (follow the money trail to understand the CAs are controlled by billionaires' "foundations" - i.e. parties that disregard security and privacy); what they offer the Web could be controlled by a proper consortium, but the Linux Foundation's subgroup is primarily sponsored by the likes of Ford and Rockefeller, not by security-vested parties.

What's at stake? Control. Not security. Not privacy. Not trust. Not authenticity. It's all about control. Whose? Not yours. You hand over control to a cartel of CAs, which are barely even independent from one another. Those CAs control not only the Web but also protocols like IRC; similarly, in IRC, some of the moderators overlap, so "Big IRC" (the very large networks) do not moderate independently, i.e. same as Mastodon.

Look ahead to foresee the threats. Think today and prepare upfront.

"In the future they can muzzle them by dealing with CAs," I wrote this morning, having noticed a considerable rise in site shutdowns by the US government, not even for illegal activities but for political reasons. Yes, "Russia this and that...."

I know, I know, I don't tolerate Russia's invasion of Ukraine any more than the average European, it's just that I can see where this leads to, a la arrests of Telegram's founder, who is also French. Will Zuckerberg be arrested for not being sufficiently pro-Trump? Or for not censoring Trump critics? And if we all agree that Zuckerberg is a terrible person, how about the same for Jack Dorsey? Or some other person who is less controversial and widely reviled?

A reader wrote to me that the above is a "5 or 10 paragraph topic" because we can envision how site-blocking at CA level would be implemented, maybe even when. At the moment they'd rather not do that as it can curtail adoption of HTTPS, not just centralised CAs (not the same thing but an additional restriction they gradually shoehorn into browsers).

"There is a lot of background info regarding CAs and how they are distributed," the reader said, "which is relevant and which most of the public probably does not know about. Those that do know about the distribution problems might not have thought about them much."

We wrote about CAs about a hundred times before, but there is no single page that is very detailed and extensive. Back when we maintained a real wiki - not just an archive thereof - it was feasible to make explanatory documents with many links and sections, refined gradually over time.

For the purpose of explaining CAs maybe we'll work on some PDF publication, but the problem is, many people these days do not bother opening PDF files and, if they do, many don't bother reading them (deterred by length, document magnitude and time required to read).

Other Recent Techrights' Posts

The Word About the Upcoming Talk by Richard Stallman - Scheduled for Friday This Week - Has Spread ("The Cost of Freedom," Lausanne, Switzerland)
So the word is spreading
Microsoft Front Group Starts the Year by Championing Underage (or Child) Labour
the fake 'FSF'
Chatbots Are Not Data-Driven, They're Human-Censored and Rely on Wage Slaves (and Sometimes Unpaid Volunteers)
This is the Microsoft wage slavery
 
Links 13/01/2025: Conflicts, Prisoner Exchange, and Homes on Fire
Links for the day
Angola: Microsoft Windows Falls Below 10%
Microsoft has a really bad 2024 in Africa
[Meme] Twitter ("X") Has Been Grooming Radicals Since 2022
Musk's very own "grooming gang"
[Meme] What Free Speech Ought to Mean
It does not sound like RMS suggests anything other than quitting social control media
Gemini Links 13/01/2025: RestFest, Yule, and Deedum
Links for the day
Modern Web Browsers as Web Censorship Software
We continue to recommend Geminispace
Two Weeks From Now Dr. Richard Stallman Speaks at The Summit of Future 2025 (India)
he will be giving a "Keynote Address" in India
Microsoft is Tight With Money: It's About the Salaries ('Cost' of the Workers)
a question of cost, not skill
Google Got People Sort of Addicted to Android So It Can Cash in (Services, App Store, Advertising) Decades Later
This is not software freedom
The Free Software Foundation Reaches 370k Dollars in Funding, Due Date is January 17th When Richard Stallman is Guest of Honour in Lausanne (Switzerland)
Even fellow board members seem unaware of it
Record Lows for Windows (Microsoft) in Botswana
The market share of Vista 11 is seen as going down
Preserving Deleted Articles About Bill Gates Talking Like a Drug Dealer About Computer Users
Now it's 2025. Different challenge.
Links 13/01/2025: Disinformation, Social Control Media Actively Promoting Nazism, and Catchup With Ukraine
Links for the day
TPM Boosters Inside Debian (TPM Isn't About Security, It is About Control Over Users and Their Machines)
We're not rushing to any conclusions
Aaron Swartz Died 12 Years Ago After a Vicious Government Campaign to Stop Him
The Aaron Swartz story is a reminder of the importance of having verifiable/verified information out there for the general public to see
Links 13/01/2025: GitLab Enshittification and Minimalism and Efficiency with Gemini Protocol
Links for the day
Links 13/01/2025: Hardware, Health, and Conflicts
Links for the day
Microsoft Appears to Have Fallen to Only 15% in Maldives
This is a problem for Microsoft
Rumours of IBM Canada Layoffs
We'll keep a vigilant eye on this
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, January 12, 2025
IRC logs for Sunday, January 12, 2025
Bots Covering Debian Releases
It would be quite safe to guess that chatbots were at least partly leveraged for that text
Gemini Links 12/01/2025: No Country For Old Men, Burned Homes, and "Planet P is Clean"
Links for the day
Slopwatch: Brittany Day and Brian Fagioli Are Still at It, Googlebombing "Linux" With LLM Slop (Taking Away Traffic From the Articles They're Plagiarising)
Some more sites that used to cover GNU/Linux have turned into slopfarms
Links 12/01/2025: Microsoft Admits It's Laying Off Staff Only Where Staff is "Expensive" (Race to the Bottom)
Links for the day
[Meme] Being High on Drugs Isn't Happiness (Likewise, Being a "Star" in Social Control Media is Temporary)
Many entities - or people - will regret telling everybody "follow me on Twitter"
[Meme] They Say That RMS Says the "F" Word (Freedom) Too Much...
About 32.7k US dollars are now left for the FSF to raise (in 6 days)
Links 12/01/2025: More Sanctions Against Russia, SCOTUS Signals Fentanylware (TikTok) Ban Will Stay
Links for the day
[Meme] A Jihad Against Servers the User Controls
We need to strive for and work towards greater control by users over "their" servers
Microsoft Azure-Only Bugs in "Linux" Can "Compromise the System."
From ubuntu.com and linux.org a few days ago
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, January 11, 2025
IRC logs for Saturday, January 11, 2025
Gemini Links 12/01/2025: DHL Express Does Not Deliver, Oddmuse Update
Links for the day
Links 11/01/2025: Social Control Media Facing Sanctions, Carter Respected at Funeral
Links for the day
If TikTok (China) Has the Rights of American Persons, Then ByteDance Can be Sentenced to Death
TikTok - like Julian Assange - does not enjoy any protections of the First Amendment and since it's not a person it would lack these protections as an American company, too
After a Year of Layoffs in Microsoft Nigeria (and Microsoft in Africa at Large) Windows Falls to New Lows and Bing Falls to 0.46% "Market Share"
Of course Microsoft gave bribes in Nigeria to suppress GNU/Linux adoption
An Important Lesson About Patents and Patent Maximalism (They Drive People and Companies Away)
This previously happened in Texas, where companies perceived their presence (in any form) to be a liability as patent trolls could drag them to friendly courts and win "damages"
When It Comes to Fentanylware (TikTok), a Digital Weapon of a Hostile Entity, Common Dreams is Jumping the Shark Again (Years After It Ran Out of Steam or Money)
Or maybe it likes the agenda promoted (curated) by Fentanylware (TikTok) and its parent company, Bytedance or Chinese Community Party (CPP)
BetaNews is Now Officially a Spamfarm With Phantom Authors and Fake Text (SPAM and Linkspam Made With LLM Slop)
That's it, the site is virtually dead now (maybe that was the plan all along)
Hazem Abbas of medevel is Ruining His Site With LLM Slop
Some of his articles are original, but now everything is suspect
[Meme] Real and Fake (or "several influential "open source" organizations [which] have come to be dominated by large companies")
The Free Software Foundation has not sold out
Free Software Foundation: Anchoring the FSF in its values
Original by Free Software Foundation
GNU/Linux Surges to All-Time Highs in Greenland, Windows Sinks to All-Time Lows
a lot of GNU/Linux gets detected there lately
Microsoft's "Donald Trump First" Doctrine
national deficits growing
Microsoft in Trouble as Azure Breaks and Only Days After Promising Investment in "Datacentres" Construction of Actual Datacentres Paused (Expect More Azure Layoffs Very Soon)
No wonder many people who got trapped inside Azure quit Azure, which keeps bleeding (losses and layoffs)
Gemini Links 11/01/2025: Wildfire, Militia and the Mole, IRC vs Social Control Media
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, January 10, 2025
IRC logs for Friday, January 10, 2025