[Cryptography] hard to trust all those root CAs
grarpamp
grarpamp at gmail.com
Wed Jul 23 14:42:02 PDT 2014
On Mon, Jul 21, 2014 at 2:12 AM, Martin Rublik <martin.rublik at gmail.com> wrote:
> On 20. 7. 2014 7:45, grarpamp wrote:
> ...
>> The mozilla bundle includes about 150. It would be nice if the
>> new cert observatoris publish a count of how many end certs
>> they see each root cert covers... a topN list of sorts. Then you
>> could save some time by including the N of your choice into your
>> 'empty by default' list. I think the distribution would be severly
>> skewed to maybe top 10 or 15 covers most any place.
>>
>
> Here is one visualization http://notary.icsi.berkeley.edu/trust-tree/ and the
> discussion as well
> https://lists.eff.org/pipermail/observatory/2012-December/000669.html
Neat. I should have worded better as to be visualizing the tree from the
roots to the AlexaTop500, plus selected other sets such as all universities,
all global $Gigacorps, etc.
http://www.alexa.com/topsites
More information about the cypherpunks
mailing list