[AusNOG] Lets Encrypt

Mark ZZZ Smith markzzzsmith at yahoo.com.au
Wed Nov 19 11:49:10 EST 2014 




----- Original Message -----
> From: Alex Samad - Yieldbroker <Alex.Samad at yieldbroker.com>
> To: "ausnog at lists.ausnog.net" <ausnog at lists.ausnog.net>
> Cc: 
> Sent: Wednesday, 19 November 2014, 11:01
> Subject: Re: [AusNOG] Lets Encrypt
> 
> I wasn't implying that the others were any better.
> 
> 

I think you've slightly missed my point.

The financial cost of CA certs would have been one of and probably the last significant barrier to the widespread deployment of TLS/HTTPS. Certs for free from this group of well or fairly well trusted organisations overcomes that barrier (and I hope to compromise their CA you'd have to compromise all of the different organisations at the same time).

> 

>>  -----Original Message-----
>>  From: Mark ZZZ Smith [mailto:markzzzsmith at yahoo.com.au]
>>  Sent: Wednesday, 19 November 2014 11:00 AM
>>  To: Alex Samad - Yieldbroker; Ernie; ausnog at lists.ausnog.net
>>  Subject: Re: [AusNOG] Lets Encrypt
>> 
>> 
>> 
>> 
>> 
>>  ----- Original Message -----
>>  > From: Alex Samad - Yieldbroker <Alex.Samad at yieldbroker.com>
>>  > To: Ernie <ernie at info.eis.net.au>; 
> "ausnog at lists.ausnog.net"
>>  > <ausnog at lists.ausnog.net>
>>  > Cc:
>>  > Sent: Wednesday, 19 November 2014, 10:42
>>  > Subject: Re: [AusNOG] Lets Encrypt
>>  >
>>  > Would you trust a CA who gave our certs to any one ?
>>  >
>> 
>>  Better than nothing security is better than nothing.
>> 
>> 
>>  > Alex
>>  >
>>  >>  -----Original Message-----
>>  >>  From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf 
> Of
>>  >> Ernie
>>  >>  Sent: Wednesday, 19 November 2014 10:34 AM
>>  >>  To: ausnog at lists.ausnog.net
>>  >>  Subject: [AusNOG] Lets Encrypt
>>  >>
>>  >>  I was just reading on Slashdot this morning about a new 
> certificate
>>  > authority
>>  >>  caleed Let's Encrypt which is a joint effort from EFF, 
> Mozilla,
>>  >> Cisco,
>>  > and
>>  >>  Akamai to encrypt the Internet. It's going to be a non-profit
>>  > organization that
>>  >>  issues free certificates for any website.
>>  >>
>>  >>  
> https://www.eff.org/deeplinks/2014/11/certificate-authority-encrypt-
>>  >>  entire-web
>>  >>
>>  >>  https://letsencrypt.org/
>>  >>
>>  >>  My question is, will this screw up companies like Verisign/Thawte 
> sales?
>>  >>
>>  >>
>>  >>
>>  >>  - Ernie.
>>  >>
>>  >>
>>  >>
>>  >>
>>  >>  --
>>  >>  "I Ping therefore I am."
>>  >>  _______________________________________________
>>  >>  AusNOG mailing list
>>  >>  AusNOG at lists.ausnog.net
>>  >>  http://lists.ausnog.net/mailman/listinfo/ausnog
>>  >
>>  > _______________________________________________
>>  > AusNOG mailing list
>>  > AusNOG at lists.ausnog.net
>>  > http://lists.ausnog.net/mailman/listinfo/ausnog
>>  >
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>

More information about the AusNOG mailing list