Comment on EU Article 45 requires that browsers trust certificate authorities appointed by governments

sonymegadrive@feddit.uk ⁨1⁩ ⁨year⁩ ago

That means cryptographic keys under one government’s control could be used to intercept HTTPS communication

Could someone smarter than me explain how this would be possible? Wouldn’t the browser still be able to enforce privacy between the client and origin? Or is it the case that certificates issued by these CAs could in theory only support weaker cyphers?

source
Sort:hotnewtop