Damn, quite a #serious #openssl #certificate #infiniteloop #security #advisory #bug https://www.openssl.org/news/secadv/2022.. Damn. Seems to affect everybody.
People #generating their own #covid #certificate #passes #passports due to bad #security practices: https://ctrsec.io/index.php/2021/09/29/w.. And this is why I *don't* personally #trust these #covid #apps , etc. They simply don't know what they are doing.
Quite a good overview on e2ee #endtoendencryption https://kerkour.com/signatures-modern-en.. Significantly more #complicated than one might expect. And this doesn't even begin to get into other complications either, such as #replay #attacks , #certificate #authorities , #randomnumber #generation , #cryptography #weakening (such as #poodle ), etc. It's a mess.
Ouch, a single #bitflip caused an error in a #certificate #authority https://groups.google.com/a/chromium.org.. It's supposed to be a rare event, but if you do enough crunching, it is bound to happen eventually.