News Targeted


Category: Google|Dec 31, 2016 | Author: Admin

How DigiNotar Hack In 2011 Changed Our Internet Infrastructure Forever

Share on

Earlier this month, a new set of minimum security requirements for Certificate Authorities was announced. This change, and some major developments related to CAs and online security, is fueled by a 2011 hack that affected about 300,000 Iranian internet users and a Dutch Certificate Authority DigiNotar.

Earlier this month, a new set of minimum security requirements for Certificate Authorities was announced. This change, and some major developments related to CAs and online security, is fueled by a 2011 hack that affected about 300,000 Iranian internet users and a Dutch Certificate Authority DigiNotar.

Back in 2011, the Google emails of as many as 300,000 Iranian netizens were intercepted using fraud security certificates. Google responded to these reports of attempted SSL man-in-the-middle attacks. 

But, as Google Chrome was able to detect the fraudulent certificate and didn’t load the fake website, the users were protected from the attack. The findings indicated that it was a result of a hack against a Dutch Certificate Authority outfit DigiNotar.

Between the period of 10 July and 20 July, the hackers compromised DigiNotar’s access and issued 531 rogue SSL certificates for Google, Skype, and Mozilla add-ons and domains.

This compromise was used to spy on the Iranian internet users. Fox-IT, the security firm hired by the Dutch government to examine the breach, found lots of security shortcomings at DigiNotar that allowed the hack to take place. Its servers ran out-of-date software, and its network was poorly segmented. Also, the passwords weren’t strong enough.

Since 2011, the Certificate Authorities (CAs) and browsers have made significant progress. While the DigiNotar hack might be forgotten, it was a wake up call for the industry. Since then, certificate pinning has become more common. Another initiative named Certificate Transparency has been taken to make all the valid certificates publicly accessible.

In a recent step to improve our trust in the internet infrastructure, a set of new minimum security requirements for CAs like DigiNotar was announced by CA Security Council (CASC). These requirements are the first-ever standardized code signing guidelines. Microsoft is the first software vendor to adopt them, and others are expected to join the cause.

Did you find this story on DigiNotar hack interesting? Don’t forget to share your views and feedback in the comments section.

Sponsored Ads:

Comments:

Previous article >


This is how Huawei tricked its way into the US

Category: IT|May 2, 2024 | Author: Admin

Edge 125 arrives in Beta with sleeping tab improvements and other changes

Category: IT|May 1, 2024 | Author: Admin

Now the iPad opens

Category: Apple|Apr 30, 2024 | Author: Admin

Woke up locked out of Apple ID on iPhone

Category: Apple|Apr 29, 2024 | Author: Admin

Google has a hidden collection of highly-addictive retro games

Category: Google|Apr 28, 2024 | Author: Admin

Google is officially a $2 trillion company

Category: Google|Apr 27, 2024 | Author: Admin

Snowden: “DO NOT use Reddit!”

Category: IT|Apr 26, 2024 | Author: Admin

Popular Google app used by millions set to close in a few weeks

Category: Google|Apr 25, 2024 | Author: Admin

Cheeky, YouTube!

Category: Google|Apr 24, 2024 | Author: Admin

This is the date Apple will reveal new iPads

Category: Apple|Apr 23, 2024 | Author: Admin

Only possible with VPN

Category: IT|Apr 22, 2024 | Author: Admin

Apple sidles into sideloading in the EU

Category: Apple|Apr 21, 2024 | Author: Admin

Report: Microsoft-OpenAI ownership might get conditional OK from EU regulators

Category: IT|Apr 20, 2024 | Author: Admin

Giant change at Google could change everything

Category: Google|Apr 19, 2024 | Author: Admin

Now Windows will be bothered about this too

Category: Microsoft|Apr 18, 2024 | Author: Admin
more