Key Internet operator VeriSign hit by hackers

http://www.msnbc.msn.com/id/46238729

 

This is one of the pitfalls of the CA system. It all comes down to trust, and you are trusting the CA's are doing it right and securing their systems, though it seems they are a bigger target than ever. That or they are finally being strong armed to report suspected breaches. Granted from what we know currently this isnt another DigiNotar, though still disturbing.

 

That's the problem with a system based on trust. It just doesn't work when you're trying to trust the government or companies behind closed doors. The only way to go is community a la WOT.

 

I agree, well something similar as no system is perfect. WOT is vulnerable to a tragedy of the commons.

 

Yeah, not exactly like WOT but very similar.

 

FAQ's of the VeriSign data breaches

 

True, how can we trust companies that hide vital loss of our information and do nothing to secure themselves from future breaches?