Comment by sidewndr46
20 hours ago
Isn't eIDAS the same technology stack that would put the government in total control of what websites you can view & what ones you can't?
https://en.wikipedia.org/wiki/Qualified_website_authenticati...
20 hours ago
Isn't eIDAS the same technology stack that would put the government in total control of what websites you can view & what ones you can't?
https://en.wikipedia.org/wiki/Qualified_website_authenticati...
QWACs exist to provide a more stringent and user-accessible way to assert a website's identity, mostly to foil phishing and other exploits that regular certificate systems don't address well. Where does this cross into censorship at all?
When the government decides not to issue certificates to websites they don't like.
Oh, stop. Tinfoil-hatting like this is how privacy and internet freedom activism gets a bad rap.
QWAC certs are only for "high value" sites: banks, government services, etc. They can only be issued by "Qualified Trust Service Providers" (e.g. digisign, D-TRUST, etc -- not governments), and cost many hundreds of euros. Your blog and mastodon instance and 98% of businesses just aren't affected.
People operating in "high risk" sectors that need access to payment infra (porn, drugs, etc) are, as always, going to have a hard time. That's a worthy conversation, but nothing about QWAC or eIDAS is about "the government not issuing certs to people they don't like".
2 replies →
It’s not the government that is issuing the website certificates.