Hacker News new | ask | show | jobs
by Tijdreiziger 1251 days ago
It would be interesting to see governments or domain registries set up ACME-compatible CAs.

At the moment, it looks like there are options in Norway and Austria as well as the US: https://www.xf.is/2020/06/30/list-of-free-acme-ssl-providers...
1 comments
jonas-w 1251 days ago
Wouldn't this allow them to easily MITM you?
link
Tijdreiziger 1251 days ago
A lot of governments already have CAs, so they could MITM you anyway.

For example, the Netherlands government CA: https://cert.pkioverheid.nl/

link