Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
immibis
36 days ago
|
parent
|
context
|
favorite
| on:
More telcos confirm Salt Typhoon breaches as White...
FWIW PKI tends to mean a central point of failure. Some Russian organizations can't get TLS certificates because of sanctions.
foobiekr
36 days ago
|
next
[–]
Pki here does not mean a global CA. You can run your own CAs (and should).
immibis
35 days ago
|
parent
|
next
[–]
Since only two parties are involved, why not use the easier pre-shared key system in that case?
foobiekr
35 days ago
|
root
|
parent
|
next
[–]
For the many reasons I listed. Pre sharesd keys are almost always global and you can’t do forensics to find the leak.
CartwheelLinux
36 days ago
|
prev
[–]
You can cross trust and establish alternative trust paths in PKIs
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: