Post: Think about what they could do with the master key
Think about what they could do with the master key →
Posted Wednesday 4th April 2007 01:01 GMT
In Homeland Security grabs for net's master keys
I don't know a lot about DNSSEC but wouldn't this allow them to do man in the middle type attacks on pretty much anyone?
And because the DNS responses would be signed with valid trusted certificates, more trust would be put in the responses making them less likely to be double checked.
Now all they need to do is serve a secret order for Root Keys on US based Certificate Authorities (if they haven't already) and they can easily listen in on pretty much any internet SSL traffic without us being any the wiser. The only time they would have problem is in b2b type situations where both ends validate certificates that have previously been exchanged.
Most read
Popular Whitepapers
- A Smart Path to Virtualization
Virtualization and Flexible Computing - Real-world server consolidation with Hyper-V
35 HP ProLiant DL385 servers onto 5 Dell PowerEdge M610 blade servers running Hyper-V - Business-Critical Applications
The Benefits of Intel Xeon Processors and Windows Server 2008 R2 for Business-Critical Apps - Virtualize at the speed of your business
The Dell guide to virtualization - A Cure for Server Sprawl
Dell Global Infrastucture Consulting helps DeKalb Medical - Staying committed to server refresh reduces cost
Can a server refresh help your company?
