Hacker News new | ask | show | jobs
by guessWhy 4938 days ago
Why?

Verisign merely signs your certificate. It does not even know your private key and hence also can't pass it to governments.
1 comments
finnw 4938 days ago
It is not necessary for the government to have your key; They can impersonate your site (using their own key) if they have the cooperation of the CA.
link
jlgreco 4938 days ago
The trick is that if this were being done on a regular/wide basis, people would notice and have pretty incontrovertible evidence of it.

I have no doubt they can do it, but it seems to be consigned to their bag of tricks for special occasions.

link