Hacker News new | ask | show | jobs
by dorkusmcgavin 2937 days ago
Your intention is correct, but your details are not (as are the OPs). Microsoft share's it's SSL certs with the entire planet. Microsoft protects it's private keys and does not share them with the NSA.

The NSA forges Microsoft's SSL keys, they do not need to ask for them.

https://en.wikipedia.org/wiki/Flame_(malware)

Even with the mitigations provided by moving away from MD5, simple integration with a CA would be much more strategically beneficial.
1 comments
lern_too_spel 2937 days ago
Thanks. I skimmed GGP's comment and assumed it said something slightly more correct than what it actually said and then copy-pasted his error.

> Even with the mitigations provided by moving away from MD5, simple integration with a CA would be much more strategically beneficial.

Returning to the point, this attack would be unaffected by Microsoft purchasing anything.

link
dorkusmcgavin 2937 days ago
> Returning to the point, this attack would be unaffected by Microsoft purchasing anything.

I was agreeing with you :)

link