Requirements for CNNIC re-application (opens in new tab)

(groups.google.com)

1 pointsdengnan10y ago1 comments

1 comments

Some background of the story:

CNNIC is a root CA from China. It issued a false certificate[0] and got revoked by both Google[1] and Mozilla[2].

CNNIC is also believed to behind some MITM attack against iCloud[3]. Pulling CNNIC from Firefox was once discussed five years ago on Mozilla's bugzilla[4, 5, 6].

0. https://cpj.org/blog/2015/03/chinas-cnnic-breaches-sacred-cr... 1. http://googleonlinesecurity.blogspot.com/2015/03/maintaining... 2. http://www.theregister.co.uk/2015/04/02/mozilla_revokes_cnni... 3. https://en.greatfire.org/blog/2014/oct/china-collecting-appl... 4. https://bugzilla.mozilla.org/show_bug.cgi?id=542689 5. https://bugzilla.mozilla.org/show_bug.cgi?id=476766 6. https://bugzilla.mozilla.org/show_bug.cgi?id=607208

j / k navigate · click thread line to collapse

Requirements for CNNIC re-application (opens in new tab)

(groups.google.com)

1 pointsdengnan10y ago1 comments

1 comments

dengnanOP10y ago

Some background of the story:

CNNIC is a root CA from China. It issued a false certificate[0] and got revoked by both Google[1] and Mozilla[2].

CNNIC is also believed to behind some MITM attack against iCloud[3]. Pulling CNNIC from Firefox was once discussed five years ago on Mozilla's bugzilla[4, 5, 6].

j / k navigate · click thread line to collapse