Y
Hacker News
new
|
ask
|
show
|
jobs
by
Natanael_L
3895 days ago
Because it doesn't settle with having as many single points of failure as the number of CA entries in your root CA list, they are getting multiplied over and over.
1 comments
MichaelGG
3895 days ago
How would it be any different if these CA's made a choice to instead issue end-user certs but based off of Let's Encrypt's authorization?
link
Natanael_L
3895 days ago
Fewer master keys to target
link
MichaelGG
3895 days ago
I'm gonna guess that getting into Let's Encrypt's HSM is as hard or harder than breaking their auth procedures.
link