Thursday, April 22, 2021

Mozilla Demands Security Checks from CAs

InfoWorld: In response to the DigiNotar hack which resulted in the issuance of fake Google SSL certificates, the Mozilla Foundation is requiring all certificate authorities (CAs) to complete unprecedented security requirements. Mozilla, which maintains the Firefox Web browser, has given the 600+ CAs eight days to audit their infrastructure, note their dependencies on other CAs, require two-factor authentication, make it more difficult to make changes to high-profile websites, and require their suppliers to do the same. Those that don’t may find themselves “untrusted” by Firefox and Mozilla’s other software.

“Participation in Mozilla’s root program is at our sole discretion, and we will take whatever steps are necessary to keep our users safe,” said Mozilla’s Kathleen Wilson.

The company is already denying access to any sites that use DigiNotar certificates.

Similar articles

Latest Articles

Top Cloud Service Providers...

Surveying the top cloud computing companies in 2021 goes way beyond AWS vs. Azure vs. Google. While those three are inarguable cloud leaders, the...

IT Planning During a...

Without a doubt, 2020 changed everything. I like to compare it to a science fiction movie where time travel is involved. Clearly, we have...

Best Data Quality Tools...

Data quality is a critical issue in today’s data centers. The complexity of the Cloud continues to grow, leading to an increasing need for...

NVIDIA’s New Grace ARM/GPU...

This week is NVIDIA’s GTC, or GPU Technology Conference, and they likely should have changed the name to ATC because this year – it...