This is in their latest blog post "Christine expands our board’s global perspective with her career experience. She worked for many years in the Australian government"
I was wondering what impact if she, a board member of ISRG, has to comply with the Australian encryption laws?
CA have zero control over your encryption keys as is. As for the MitM there likely several CAs actually based and doing business in Australia. Yet with certificate transparency being mandatory it's almost guaranteed that entity doing something shady will go out of business really fast.
Not that I actually would be at all, but hypothetical I would be more concerned with them hiring an Australian engineer than adding an Australian board member. What is the board member going to do to compromise operational security?
Influence hiring to get the engineer spy in. Also CIA docs have been published that said they had a system where people would purposefully tie down a company by being inefficient and causing beaucratic messeshttps://www.cia.gov/news-information/featured-story-archive/...
https://www.abetterinternet.org/