研究人员发现 Symantec CA 证书吊销流程存在漏洞,网络上发布的 SSL 证书与私钥验证方法错误百出:
https://blog.hboeck.de/archives/888-How-I-tricked-Symantec-with-a-Fake-Private-Key.html
Symantec 官方回应:
https://www.symantec.com/connect/blogs/third-party-revocation-updates
https://blog.hboeck.de/archives/888-How-I-tricked-Symantec-with-a-Fake-Private-Key.html
Symantec 官方回应:
https://www.symantec.com/connect/blogs/third-party-revocation-updates
Select Language