Bad eIDAS: Europe ready to intercept, spy on your encrypted HTTPS connections

⁨28⁩ ⁨likes⁩

Submitted ⁨⁨1⁩ ⁨year⁩ ago⁩ by ⁨BrikoX@lemmy.zip⁩ to ⁨globalnews@lemmy.zip⁩

https://www.theregister.com/2023/11/08/europe_eidas_browser/

Archived version: archive.ph/nH73q
Archived version: web.archive.org/web/…/europe_eidas_browser/

Comments

Sort:hotnew top

sovietknuckles@hexbear.net ⁨1⁩ ⁨year⁩ ago

But one of the requirements of eIDAS 2.0 is that browser makers trust government-approved Certificate Authorities (CA) and do not implement security controls beyond those specified by the European Telecommunications Standards Institute (ETSI).

State-mandated backdoors seem bad

source
- Boomkop3@reddthat.com ⁨1⁩ ⁨year⁩ ago
  I’m kinda disappointed this is happening again. Certificate authorities just say “this person is who they say they are”. They can’t reroute traffic, trick you into connecting to the wrong ip, or decrypt traffic
  
  source