Tag: certificate authority
-
Cloud Blog: Windows Remote Desktop Protocol: Remote to Rogue
Source URL: https://cloud.google.com/blog/topics/threat-intelligence/windows-rogue-remote-desktop-protocol/ Source: Cloud Blog Title: Windows Remote Desktop Protocol: Remote to Rogue Feedly Summary: Written by: Rohit Nambiar Executive Summary In October 2024, Google Threat Intelligence Group (GTIG) observed a novel phishing campaign targeting European government and military organizations that was attributed to a suspected Russia-nexus espionage actor we track as UNC5837. The…
-
Hacker News: Offline PKI using 3 Yubikeys and an ARM single board computer
Source URL: https://vincent.bernat.ch/en/blog/2025-offline-pki-yubikeys Source: Hacker News Title: Offline PKI using 3 Yubikeys and an ARM single board computer Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the implementation of an offline Public Key Infrastructure (PKI) system using YubiKeys and an air-gapped environment, enhancing security against network threats. This approach is particularly…
-
NCSC Feed: Provisioning and securing security certificates
Source URL: https://www.ncsc.gov.uk/guidance/provisioning-and-securing-security-certificates Source: NCSC Feed Title: Provisioning and securing security certificates Feedly Summary: How certificates should be initially provisioned, and how supporting infrastructure should be securely operated. AI Summary and Description: Yes Summary: The text discusses the implementation and management of X.509v3 certificates and Public Key Infrastructure (PKI) necessary for securing communications in networks.…
-
Hacker News: Certificate Transparency in Firefox: A Big Step for Web Security
Source URL: https://blog.transparency.dev/ct-in-firefox Source: Hacker News Title: Certificate Transparency in Firefox: A Big Step for Web Security Feedly Summary: Comments AI Summary and Description: Yes Summary: The implementation of Certificate Transparency (CT) enforcement in Firefox marks a significant advancement in web security, enhancing protection against certificate fraud and man-in-the-middle attacks. This change demands compliance from…
-
Hacker News: Setting up a trusted, self-signed SSL/TLS certificate authority in Linux
Source URL: https://previnder.com/tls-ca-linux/ Source: Hacker News Title: Setting up a trusted, self-signed SSL/TLS certificate authority in Linux Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text provides a detailed technical guide on generating self-signed TLS certificates using OpenSSL and creating a custom Certificate Authority (CA) for local use, particularly for testing purposes. It…
-
Hacker News: Disabling cert checks: we have not learned much
Source URL: https://daniel.haxx.se/blog/2025/02/11/disabling-cert-checks-we-have-not-learned-much/ Source: Hacker News Title: Disabling cert checks: we have not learned much Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text discusses the critical significance of certificate verification in SSL/TLS communication, particularly highlighting the history and evolution of the curl and libcurl libraries in handling SSL verification. It emphasizes the…
-
Hacker News: PostgreSQL Support for Certificate Transparency Logs Now Available
Source URL: https://blog.transparency.dev/postgresql-support-for-certificate-transparency-logs-released Source: Hacker News Title: PostgreSQL Support for Certificate Transparency Logs Now Available Feedly Summary: Comments AI Summary and Description: Yes Summary: The recent integration of PostgreSQL as a storage backend for the Trillian certificate transparency ecosystem enhances data integrity and reliability for log operators. This shift, motivated by previous log failures, allows…
-
Hacker News: Let’s Encrypt to end OCSP support in 2025
Source URL: https://scotthelme.co.uk/lets-encrypt-to-end-ocsp-support-in-2025/ Source: Hacker News Title: Let’s Encrypt to end OCSP support in 2025 Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the significant decision by Let’s Encrypt, the largest Certificate Authority (CA) globally, to discontinue support for the Online Certificate Status Protocol (OCSP) in 2025. It outlines the implications…
-
Cloud Blog: What’s new for Google Cloud databases — December 2024
Source URL: https://cloud.google.com/blog/products/databases/whats-new-for-databases-december-2024/ Source: Cloud Blog Title: What’s new for Google Cloud databases — December 2024 Feedly Summary: As the year winds down and we gather around the (digital) fireplace, the excitement around Google Cloud databases is ramping up! It’s been a busy season of innovation and customer success, and we’ve got a sack full…
-
Hacker News: Let’s Encrypt is 10 years old now
Source URL: https://letsencrypt.org/2014/11/18/announcing-lets-encrypt/ Source: Hacker News Title: Let’s Encrypt is 10 years old now Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the launch of Let’s Encrypt, a free certificate authority aimed at simplifying the process of obtaining TLS certificates to enhance internet security. The initiative champions principles such as free…