Posted by: Dan O'Connor
ca attacks, ssl attacks, tls attacks
The create of SSL makes a couple good points.
I think inevitable that a cert signer is attacked again if one is not currently compromised right now. If a person or nation state wanted to attack an SSL service having access to a CA is the way to go. A good idea might be to cut down the number of entities that can create these.