Bonum Certa Men Certa

Certificate Authorities (CAs) Are Serving the Authorities, Not You

posted by Roy Schestowitz on Sep 07, 2024,
updated Sep 08, 2024

Footprints In The Sand

The centralised CAs "model" is not working

THE so-called "security model" we have is not working for the vast majority of us; the oligarchs control the chains (follow the money trail to understand the CAs are controlled by billionaires' "foundations" - i.e. parties that disregard security and privacy); what they offer the Web could be controlled by a proper consortium, but the Linux Foundation's subgroup is primarily sponsored by the likes of Ford and Rockefeller, not by security-vested parties.

What's at stake? Control. Not security. Not privacy. Not trust. Not authenticity. It's all about control. Whose? Not yours. You hand over control to a cartel of CAs, which are barely even independent from one another. Those CAs control not only the Web but also protocols like IRC; similarly, in IRC, some of the moderators overlap, so "Big IRC" (the very large networks) do not moderate independently, i.e. same as Mastodon.

Look ahead to foresee the threats. Think today and prepare upfront.

"In the future they can muzzle them by dealing with CAs," I wrote this morning, having noticed a considerable rise in site shutdowns by the US government, not even for illegal activities but for political reasons. Yes, "Russia this and that...."

I know, I know, I don't tolerate Russia's invasion of Ukraine any more than the average European, it's just that I can see where this leads to, a la arrests of Telegram's founder, who is also French. Will Zuckerberg be arrested for not being sufficiently pro-Trump? Or for not censoring Trump critics? And if we all agree that Zuckerberg is a terrible person, how about the same for Jack Dorsey? Or some other person who is less controversial and widely reviled?

A reader wrote to me that the above is a "5 or 10 paragraph topic" because we can envision how site-blocking at CA level would be implemented, maybe even when. At the moment they'd rather not do that as it can curtail adoption of HTTPS, not just centralised CAs (not the same thing but an additional restriction they gradually shoehorn into browsers).

"There is a lot of background info regarding CAs and how they are distributed," the reader said, "which is relevant and which most of the public probably does not know about. Those that do know about the distribution problems might not have thought about them much."

We wrote about CAs about a hundred times before, but there is no single page that is very detailed and extensive. Back when we maintained a real wiki - not just an archive thereof - it was feasible to make explanatory documents with many links and sections, refined gradually over time.

For the purpose of explaining CAs maybe we'll work on some PDF publication, but the problem is, many people these days do not bother opening PDF files and, if they do, many don't bother reading them (deterred by length, document magnitude and time required to read).

Other Recent Techrights' Posts

Revisiting Julian Assange's Excellent Talk, His First Talk Since 2019 (Tactful and Almost Invulnerable to 'Cheap Shots')
Assange need not be politically-correct or self-censor
Mozilla is GAFAM, HTTPS is Monopolies
Firefox used to boast that it would make the Web more accessible. Today's Mozilla is rowing in the opposite direction.
 
One Step Closer to the End of Microsoft's XBox
XBox sales are down over 50% in the past year
GNU/Linux Flaring Up in ASEAN
We said we'd not post statCounter for a few months
Gemini Links 04/10/2024: Asteroid City and Retro Gaming
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, October 03, 2024
IRC logs for Thursday, October 03, 2024
Resting Time
we deserve a short break - even if only for tomorrow
Wikileaks Revelations About the History of IBM and Its Role in the Cold War
IBM is still an ICBM company (to this very date)
Windows Kills More Than Most Wars (But the Media Casually Ignores the Death Toll of Microsoft)
The bottom line is, many people are dying, they die due to Microsoft, and the media fails us by not informing us and failing to even name the principal culprit
Gemini Links 03/10/2024: RetroChallenge and Change of Online Habits
Links for the day
Links 03/10/2024: Quantum Computer Vapourware (as Usual) and Samsung Layoffs
Links for the day
Links 03/10/2024: "Hey Hi" Scandals and Copyright/Trademark Disputes
Links for the day
Invidious Seems to be Nearing 'End of Life' After Repeated Crackdowns by Google/Alphabet/YouTube
To Free software users, YouTube ought to become a "no-no"
Links 03/10/2024: Climate Issues and Tensions in East Asia
Links for the day
Like a Marketing Department of Microsoft, Canonical Sells Back Doors and Surveillance as "Confidential" and "Hey Hi" (AI)
Notice how Canonical has made no statement critical of Microsoft for years
Gemini Links 03/10/2024: Frozen Tofu and SGI O2
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, October 02, 2024
IRC logs for Wednesday, October 02, 2024
Links 02/10/2024: Microsoft Spying on Windows Users Grows, Microsoft's Surveillance Arm LinkedIn Used to Highlight Employment Crisis
Links for the day
Links 02/10/2024: Students Who Can’t Read Books and Dead Butt Syndrome
Links for the day
Gemini Links 02/10/2024: GNU/Linux Distros, Flat-File Databases, and How the Web ate Gopher
Links for the day
Technology: rights or responsibilities? - Part II
By Dr. Andy Farnell
A Cost-Free Bribe From Microsoft
Daniel Stenberg is not dumb, but he seems rather gullible or unprincipled
Plans for the Site's 19th Year
Like TechDirt, we expect to devote more efforts/time to covering free speech online
Network Getting Faster
Loading up the site in 0.077 seconds
The Manchester Experience
Yesterday Tux Machines served 436,897 Web hits
If Red Hat Has Mass Layoffs This Year, Nobody Will Tell You About It
We seem to have entered a strange quasi-cosmic era wherein layoffs aren't disclosed anymore and news sites don't bother to report them, either
IBM, Kyndryl, Subsidiaries (Like Red Hat) and Silent Layoffs
Kyndryl follows in IBM's footsteps with rolling layoffs likely affecting thousands
Anniversaries and New Beginnings
The world needs more transparency and far less secrecy
Links 02/10/2024: Microsoft Kills Off HoloLens, Media Discusses Assange Speech
Links for the day
Gemini Links 02/10/2024: New Car, Broadband, and Gemtexter 3.0.0
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, October 01, 2024
IRC logs for Tuesday, October 01, 2024