In 2011, a number of Certification Authorities suffered catastrophic failures which showed that the SSL CA system, a cornerstone of the secure Web, has been undermined by attackers and corporate greed. These failures and malpractices may well lead to the eventual downfall of SSL certificates as we know them.
This talk will summarize the events which transpired last year (and continue to pop up in 2012) and show which alternatives are currently in the making. It will introduce concepts like DANE, Convergence, Sovereign Keys and show some interesting info about SSL certificates "in the wild".
Dr. Christopher Kunz
Dr. Christopher Kunz is currently the principal security consultant at filoo GmbH, an ISP and carrier based in GŁtersloh, Germany. He has received his PhD in computer science in Hannover, Germany, following his studies in the area of security in distributed applications. He specializes in PKI security and its applications in the Web, Grids and the Cloud.