Hi,
TLS is prone to Man-In-The-Middle attacks with unjustly obtained intermediate
certificates (e.g. firewall appliances).
The DNSSEC KSK-rollover worked like a charm.
So I suggest to make DANE-TLS mandatory for TLS to prevent Man-In-The-Middle
attacks with unjustly obtained intermediate certi
DANE adoption
in TLS will be incremental and will not be accomplished via a mandate.
On Oct 15, 2018, at 4:20 PM, Rene 'Renne' Bartsch, B.Sc. Informatics
wrote:
TLS is prone to Man-In-The-Middle attacks with unjustly obtained intermediate
certificates (e.g. firewall appliances).
The DNSS
e-distrust/
Am 16.10.18 um 16:06 schrieb Ted Lemon:
Can you provide a citation for that statement? Not doubting you,
particularly, but this is news to me, and probably to some others on this list,
if true.
On Tue, Oct 16, 2018 at 4:01 PM Rene 'Renne' Bartsch, B.Sc. Informatics
