> ssl itself wasn't cracked they simply exploited the known vulnerable > md5 > hashing. Another hashing method needs to be used.
The encryption algorithm wasn't hacked. Correct. Another hashing method may help. Yup. My problem is with the chain-of-trust and a lack of reasonable or reasonably reliable (pick) ways of revoking certificates. Deepak
