Quis custodiet ipsos custodes, mate?
Allowed to expire, by London’s Metropolitan Police Department: the SSL certificate for their online crime reporting service (at https://online.met.police.uk/) – meaning folks reporting sensitive, confidential and possibly life-threatening matters were sending it in the clear (if they actually continued after the “This Site Is Not Trusted!” warning.)
Blacklisted, by Google and Mozilla: new SSL certs ultimately authorized by China’s official CA, CNNIC, due to “egregious” flaws in their trust management and cert issuance schemes.
The Real Problem, Part 1: That Pesky Desire for PRIVACY.
As declared by someone who wants to read your mail: Europol Director Rob Wainright would prefer you not encrypt your information, please – apparently it’s used by “dangerous people” on the internet.
The Real Problem, Part 2: Not Enough People want PRIVACY.
Opportunistic Encryption to Reduce Opportunistic Infections
Instructed by Mozilla: Newest releases of Firefox now tells the browser to encrypt all traffic wherever possible using the nascent technology known as opportunistic encryption, or OE.
Maybe the Mistake Was Using Outlook?
Released by accident: Personal information (such as passport numbers) for the leaders of the most powerful nations on Earth, due to either human error or Microsoft interface design – take your pick . (Autofill? More like auto-FAIL, amirite?)
Check back next week for more of what we’re keeping up with here at SSL.com, where we truly believe a safer internet is a better internet.