Isn't HTTPS relying on a demonstrably insecure CA also only cosmetically more se... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		michaelt on Jan 5, 2013 \| parent \| context \| favorite \| on: Turkish government agency spoofed Google certifica... Isn't HTTPS relying on a demonstrably insecure CA also only cosmetically more secure than HTTP?

danielweber on Jan 7, 2013 [–]

It depends who has access to compromise the CA. If it was the Turkish government that did so, they probably aren't going to waste their ammo to try to decrypt Joe Random's banking information.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact