Bonum Certa Men Certa

Certificate Authorities (CAs) Are Serving the Authorities, Not You

posted by Roy Schestowitz on Sep 07, 2024,
updated Sep 08, 2024

Footprints In The Sand

The centralised CAs "model" is not working

THE so-called "security model" we have is not working for the vast majority of us; the oligarchs control the chains (follow the money trail to understand the CAs are controlled by billionaires' "foundations" - i.e. parties that disregard security and privacy); what they offer the Web could be controlled by a proper consortium, but the Linux Foundation's subgroup is primarily sponsored by the likes of Ford and Rockefeller, not by security-vested parties.

What's at stake? Control. Not security. Not privacy. Not trust. Not authenticity. It's all about control. Whose? Not yours. You hand over control to a cartel of CAs, which are barely even independent from one another. Those CAs control not only the Web but also protocols like IRC; similarly, in IRC, some of the moderators overlap, so "Big IRC" (the very large networks) do not moderate independently, i.e. same as Mastodon.

Look ahead to foresee the threats. Think today and prepare upfront.

"In the future they can muzzle them by dealing with CAs," I wrote this morning, having noticed a considerable rise in site shutdowns by the US government, not even for illegal activities but for political reasons. Yes, "Russia this and that...."

I know, I know, I don't tolerate Russia's invasion of Ukraine any more than the average European, it's just that I can see where this leads to, a la arrests of Telegram's founder, who is also French. Will Zuckerberg be arrested for not being sufficiently pro-Trump? Or for not censoring Trump critics? And if we all agree that Zuckerberg is a terrible person, how about the same for Jack Dorsey? Or some other person who is less controversial and widely reviled?

A reader wrote to me that the above is a "5 or 10 paragraph topic" because we can envision how site-blocking at CA level would be implemented, maybe even when. At the moment they'd rather not do that as it can curtail adoption of HTTPS, not just centralised CAs (not the same thing but an additional restriction they gradually shoehorn into browsers).

"There is a lot of background info regarding CAs and how they are distributed," the reader said, "which is relevant and which most of the public probably does not know about. Those that do know about the distribution problems might not have thought about them much."

We wrote about CAs about a hundred times before, but there is no single page that is very detailed and extensive. Back when we maintained a real wiki - not just an archive thereof - it was feasible to make explanatory documents with many links and sections, refined gradually over time.

For the purpose of explaining CAs maybe we'll work on some PDF publication, but the problem is, many people these days do not bother opening PDF files and, if they do, many don't bother reading them (deterred by length, document magnitude and time required to read).

Other Recent Techrights' Posts

Daniel Pocock's ClueCon 2024 Presentation Was Also Streamed Live in YouTube and Later Removed by Google, Citing "Copyrights". Now It's Back.
The talk covers social control media, Debian, politics, and more
Improving Daily Links by Culling Spam, Chaff, and LLM Slop
the Web is getting worse
[Meme] EPO Targets
Targets mean nothing if or when you measure the wrong thing
The EPO is Nowadays Trying to Trick Staff Into Settling Instead of Solving the Underlying Problems of Corruption and Injustice
This seems like a classic case of "divide-and-rule" or using misled/weak people to harm the whole group (or "the village")
Richard Stallman 'Unveils' His January 20 Talk in Montpellier, France
It's free (gratis)
 
Links 20/01/2025: Conflict, Climate, and More
Links for the day
Gemini Links 20/01/2025: Conflicted Feelings and Politics
Links for the day
Google 'Cancels' RMS
Is the talk happening?
Microsoft Revisionism Debunked by Microsoft's Own Words About “the Failure of OS/2”
The Register on “the failure of OS/2”
Links 20/01/2025: Indonesia to Prevents Kids' Access to Social Control Media (Addiction and Worse), Climate News Catchuo
Links for the day
EPO Union Says Monopoly-Granting Targets at EPO "Difficult to Achieve Without Compromising [Staff] Health, Personal Time or the Quality of the Final Products" (Products as in Monopolies, Not Real Products)
To those of us (over 99.999% of people impacted by this) who do not work at the EPO the misuse of words like "products" (monopolies are not products) should be disturbing
Links 20/01/2025: More PR Stunts by ByteDance and MLK’s Legacy Disrespected
Links for the day
Gemini Links 20/01/2025: Magnetic Fields, NixOS, and Pleroma
Links for the day
BetaNews Spreads Donald Trump Propaganda, Promotes Scams, and Publishes Fake 'Articles' About "Linux"
This is typical BetaNews
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, January 19, 2025
IRC logs for Sunday, January 19, 2025
Links 19/01/2025: Gaza Ceasefire and PR Stunt by Fentanylware (TikTok), Faking It by "Going Dark" to Incite American Addicts (Users)
Links for the day
[Meme] Hardware RAID and Hardware Raid
We're expecting attacks on the press in Trump's second term (no need to impress anyone for another election cycle) to be far worse than the first
What's Running on the Laptops
12 months have passed
They Won't Buy Vista 11 PCs or "Hey Hi" Copilot+++++++ PCs of Microsoft (With TPM)
Windows at 8%
No Time Left for President Biden to Pardon Julian Assange
At least they tried
[Meme] 404, Not Found
Kuhn: I'd like to interject for a moment, we made an alliance with the Microsoft-dominated LF to outsource projects to Microsoft GitHub and rich people gave us money to do this
Total Lock-down Ambitions - Part IV - The Latest Examples and the Perils (in Summary)
For further reading take a look at Musial's nice outline
FOSDEM is Called "FOSDEM" Because of Richard Stallman (RMS)
The overlap there seems timely; yesterday RMS spoke in French-speaking (in part) Switzerland where questions in French were accepted
Links 19/01/2025: TikTok (Fentanylware) Now Banned in the US, Convicted Felon Talks to Fentanylware CEO and Pooh-Tin About Undoing the Ban Despite the Supreme Court Unanimously Upholding It
Links for the day
FTC Realises Microsoft Buying Fake 'Clients' to Fake "Revenue" (Microsoft 'Buying' Services and Products From Itself!)
Ponzi scheme
Total Lock-down Ambitions - Part III - The Web Browser as DRM Pusher
A lot of "streaming" stuff is DRM
Video: University in Peru Honours Richard Stallman
Tomorrow, January 20, Richard Stallman speaks in France
IBM Termination Story and Information From Microsoft About Mass Layoffs
In 2 weeks of 2025 Microsoft already had 2 waves of layoffs
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, January 18, 2025
IRC logs for Saturday, January 18, 2025
Links 18/01/2025: Restoring the Great Wall of China and Economic Expansion in China
Links for the day
Guardian Digital (linuxsecurity.com) is Spamming the Web With Microsoft's Promotional LLM Slop About UEFI 'Secure' Boot (Which is Against Real Security)
This is an attack on honest journalism
Links 18/01/2025: TikTok's Endgame, "Car Freedom", and Spying in Cars 'Fines' GM (Settlement)
Links for the day
January 20: Richard Stallman Talk in Europe
evening time in Europe, around midday in the United States and Canada
Links 18/01/2025: Apple Getting Out of Hey Hi (AI) Slop (Too Much Misinformation), Chaffbots/Chatbots Try to Settle Copyright Infringement Lawsuits
Links for the day
What Fake News Sites Are Doing to GNU/Linux
The LLM slop about Linux serves two purposes
Links 18/01/2025: Microsofters Upset at Microsoft's Ridiculous Rebrands (Excuse for Massive Price Hikes), Chaffbot Company ('Open'AI) Faces More Lawsuits
Links for the day
Gemini Links 18/01/2025: Surge in Illnesses, ctags, and Gemsync
Links for the day
Slopwatch: Too Lazy to Write Real Articles, Offloading to Chatbots Instead (LLM Slop About "Linux")
The Web was already full of garbage before the LLM frenzy. Now it's even worse.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, January 17, 2025
IRC logs for Friday, January 17, 2025