[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DANE, was A Deep Dive on the Recent Widespread DNS Hijacking

Subject: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking
From: nanog at studio442.com.au (Julien Goodwin)
Date: Wed, 27 Feb 2019 15:58:58 +1100
In-reply-to: <[email protected]>
References: <[email protected]>


On 27/2/19 3:10 am, John Levine wrote:
> In article <B68C84D4-9D1A-4303-94CA-59CEBFB6B934 at pch.net> you write:
>> We need to get switched over to DANE as quickly as possible, and stop wasting effort trying to keep the CA system alive with
>> ever-hackier band-aids.
> 
> What's the DANE version of a green-bar cert?

You mean the EV certificates that most browsers are removing the distinction of, removing their only real justification for existing?

https://www.troyhunt.com/extended-validation-certificates-are-dead/

Not that they were ever actually widely used.

https://www.troyhunt.com/on-the-perceived-value-ev-certs-cas-phishing-lets-encrypt/

References:
- DANE, was A Deep Dive on the Recent Widespread DNS Hijacking
  - From: johnl at iecc.com (John Levine)

Prev by Date: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking
Next by Date: A Deep Dive on the Recent Widespread DNS Hijacking
Previous by thread: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking
Next by thread: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking
Index(es):
- Date
- Thread