Comment by pgeorgi
11 years ago
The NSA (or any other agency) only has to coerce any single CA to cooperate. As long as it's in the standard set shipped with browsers, its certificates are accepted.
And pretty much every major government directly or indirectly controls one or multiple CAs that are in the standard set.
No comments yet
Contribute on Hacker News ↗