The 1.1.1.1 Certificate Scandal: A Wake-Up Call for Microsoft’s Root Program

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/0e/94/e9/0e94e970-bd41-a164-b784-bfe40af1a615/mza_11513504500373176126.jpg/600x600bb.jpg

The Encryption Edge

Encryption Consulting

18 episodes

6 days ago

The Encryption Edge delves into the practical world of applied cryptography, uncovering the technologies and strategies that protect our digital world. From exploring real-world implementations of cryptographic systems to breaking down the latest news and developments in the field, this podcast brings you a hands-on perspective of securing data and communications. Perfect for professionals, enthusiasts, and curious minds, The Encryption Edge ensures you're always one step ahead in the fast-evolving realm of cryptography.

Technology

RSS

All content for The Encryption Edge is the property of Encryption Consulting and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode/42599502/42599502-1757619782831-fef3751565d1.jpg

The 1.1.1.1 Certificate Scandal: A Wake-Up Call for Microsoft’s Root Program

The Encryption Edge

6 minutes 51 seconds

1 month ago

The 1.1.1.1 Certificate Scandal: A Wake-Up Call for Microsoft’s Root Program

A security incident involving a mis-issued certificate for Cloudflare's 1.1.1.1 DNS service has exposed a serious vulnerability. We break down how an obscure Certificate Authority, trusted by Microsoft but not others, left Windows users exposed to a potential man-in-the-middle attack. Join us as we explore the deeper systemic issues at play, from the failure of automated monitoring to the broader pattern of governance failures in the Web PKI. We also discuss why this incident is a critical reminder of the dangers of passive trust and how new regulations like eIDAS 2.0 could make the problem even worse.