|
|
|
|
|
|
by anonchl
4741 days ago
|
|
|
> they actually need Google's secret key, instead of using a CA under their control Note that Google runs their own CA (signed by Equifax's Root CA) and, thus, issues their own certificates. The way things are going, I see no reason why the NSA could not, with a FISA warrant, simply order Google to: 1. provide them with a copy of Google's CA's private key; or,
2. issue the NSA a certificate valid for *.{every-google-domain}.com. Maybe they can. Maybe they have. |
|
|