Bonum Certa Men Certa

Certificate Authorities (CAs) Are Serving the Authorities, Not You

posted by Roy Schestowitz on Sep 07, 2024,
updated Sep 08, 2024

Footprints In The Sand

The centralised CAs "model" is not working

THE so-called "security model" we have is not working for the vast majority of us; the oligarchs control the chains (follow the money trail to understand the CAs are controlled by billionaires' "foundations" - i.e. parties that disregard security and privacy); what they offer the Web could be controlled by a proper consortium, but the Linux Foundation's subgroup is primarily sponsored by the likes of Ford and Rockefeller, not by security-vested parties.

What's at stake? Control. Not security. Not privacy. Not trust. Not authenticity. It's all about control. Whose? Not yours. You hand over control to a cartel of CAs, which are barely even independent from one another. Those CAs control not only the Web but also protocols like IRC; similarly, in IRC, some of the moderators overlap, so "Big IRC" (the very large networks) do not moderate independently, i.e. same as Mastodon.

Look ahead to foresee the threats. Think today and prepare upfront.

"In the future they can muzzle them by dealing with CAs," I wrote this morning, having noticed a considerable rise in site shutdowns by the US government, not even for illegal activities but for political reasons. Yes, "Russia this and that...."

I know, I know, I don't tolerate Russia's invasion of Ukraine any more than the average European, it's just that I can see where this leads to, a la arrests of Telegram's founder, who is also French. Will Zuckerberg be arrested for not being sufficiently pro-Trump? Or for not censoring Trump critics? And if we all agree that Zuckerberg is a terrible person, how about the same for Jack Dorsey? Or some other person who is less controversial and widely reviled?

A reader wrote to me that the above is a "5 or 10 paragraph topic" because we can envision how site-blocking at CA level would be implemented, maybe even when. At the moment they'd rather not do that as it can curtail adoption of HTTPS, not just centralised CAs (not the same thing but an additional restriction they gradually shoehorn into browsers).

"There is a lot of background info regarding CAs and how they are distributed," the reader said, "which is relevant and which most of the public probably does not know about. Those that do know about the distribution problems might not have thought about them much."

We wrote about CAs about a hundred times before, but there is no single page that is very detailed and extensive. Back when we maintained a real wiki - not just an archive thereof - it was feasible to make explanatory documents with many links and sections, refined gradually over time.

For the purpose of explaining CAs maybe we'll work on some PDF publication, but the problem is, many people these days do not bother opening PDF files and, if they do, many don't bother reading them (deterred by length, document magnitude and time required to read).

Other Recent Techrights' Posts

Links 11/10/2024: Discord Still Blocked in Turkey, Google Might be Split
Links for the day
LinuxSecurity (Guardian Digital, Inc) Sloppy With Its 'Linux' Slop
This kind of stuff is killing the World Wide Web and ruins human knowledge
Loss of Technical Merit(ocracy)
"buzzword diplomas"
 
Going Almost 4.5 Decades Back to Find 'Dirt' on a Person
That incident was 42.5 years ago. Is that how far some people would go in an effort to discredit a person?
XBox is Dead. This is Just the Beginning.
the main reason Microsoft bought Activision/Blizzard was to hide the growing losses and failure of XBox
The Risk to the "Linux" Brand
Brands that are not guarded from misuse/abuse will inevitably lose their original meaning and their value
Gemini Links 11/10/2024: Deploying Common Lisp Programs and Examining FreeBSD
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, October 10, 2024
IRC logs for Thursday, October 10, 2024
[Meme] Chin-dropping and Jaw-dropping (Considerable Drop in Patent Validity and Quality)
This drop is very much intentional
Gemini Links 10/10/2024: Untruth, SSH, Gopher, and More
Links for the day
Geminispace Beyond 4,100 Capsules
4,000 was less than 8 weeks ago
Links 10/10/2024: TikTok's Legal Problems, WeblogPoMo Challenges
Links for the day
[Meme] European Patent Convention and Vienna Convention Became Only Fictions (Laws and Constitutions Are Now Works of Fiction in Europe)
A political crisis and blunder
Almost a Thousand EPO Staff Protesting to EPO Member States That the Office Illegally Grants Software Patents and Other Invalid European Patents
"The outcome confirms that the concerns about the EPO’s ability to grant legally sound patents remain"
Junk Science
science is being compromised for business purposes
[Meme] Dismantling .io (Stick a Fork, the Hype is Done)
NVIDIA is an excellent new example of hype driving up fictional "value"
UNIX is 55 This Year, It is 6 Years Older Than Microsoft
It should be noted that the surviving co-creator of UNIX, Ken Thompson, 'moved' to GNU/Linux (Debian) in recent years
This Year, for the First Time Since August 2019 (Bill Gates MIT Scandal, Jeffrey Epstein Bribes), libreplanet-discuss Was Inactive an Entire Month
The MIT injustice remains and recent "libreplanet" events were held in a venue that's not MIT and far less prestigious than MIT (the "Wentworth" imitation)
[Meme] Different Ending for Jurassic Park
UNIX in old movies
Evolution of Hype
Passing fads and rebranding
Groklaw Will Hopefully Come Back
Sites should be able to run for decades with hardly any human role/interaction, but that's not where we are...
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, October 09, 2024
IRC logs for Wednesday, October 09, 2024
World Wide Web: Only Criminals Would Want Real Security and Vouch for Themselves When They Use Encryption
In "modern" browsers, the podlock icon probably does not mean what users might think it means
[Meme] OSI Digging Its Very Own Grave (With Microsoft)
The very latest blog post from OSI is a hoot
Gemini Links 09/10/2024: YouTube Woes, Post-Truth Slop
Links for the day
Geminispace is More Trustworthy (and Private) Than the World Wide Web
Unlike the Web, Geminispace does not route the lion's share of traffic through a collective of spying companies
Nothing Will Be Secure and Robust to Failure Until Microsoft Windows is Eradicated and/or Disconnected From the Internet
Every system has limited capacity, Windows botnets push things to their limits
GNU/Linux Took Off at the BSDs' Expense (Amid Telecom Lawsuit) and the Rivalry Persists Because Microsoft is Negligible in the Server Space
UNIX or POSIX is the future
Links 09/10/2024: Samsung's Fall, Tensions Growing Near China
Links for the day
Gemini Links 09/10/2024: Retroware and gmlgcd 2.0
Links for the day
Links 09/10/2024: Microsoft's Surface Duo 2 Officially Dead, X/Twitter Shutdown in Brazil, and "OpenAI Is A Bad Business"
Links for the day
Technology: rights or responsibilities? - Part III
By Dr. Andy Farnell
[Meme] Bill Gates With a Side of "Linux"
Linux Foundation is trolling us with Bill Gates
Once Again Linux Foundation Makes It Clear It's Being 'Absorbed' by Bill Gates
Linux Foundation devotes about 2% of its budget to Linux
Links 08/10/2024: Australian Fines for Twitter (X), Fake Patent Courts Still Not Scuttled
Links for the day
World Wide Slop
If it quacks like a duck...
IBM is a Boys' Club
If IBM collapsed, the Red Hat engineers who work on GNU and Linux would simply work elsewhere (on the same projects)
The Miserable State of GAFAM
Looking for government handouts
Microsoft is Acting Like a Company That's Running Out of Money (But Still Pretends to be Wealthy in Order to Attract or Retain Shareholders)
Azure has had mass layoffs every year since 2020, yet Microsoft keeps telling shareholders that "clown computing" is growing
Dr. Andy Farnell's Article on Societal Disorganised Attachment and the Role of Social Control Media
The article is quite long and typos were still being fixed as recently as last night
Smear Alert: Linus Torvalds Asking for Better Commit Messages Makes Linus a (Grammar) Nazi
Maybe the "mainstream media" is looking for clickbait or maybe it's actively looking to make a scandal - a phony controversy with which to make the job of coordinating Linux unpleasant
Gemini Links 09/10/2024: Climate Doom and Clagrange
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, October 08, 2024
IRC logs for Tuesday, October 08, 2024