Comment by zorked
11 years ago
Something like Certificate Transparency would counter that - where the browser can only accept certificates that have been made public record. So the owners will at least know when their domain has been attacked.
11 years ago
Something like Certificate Transparency would counter that - where the browser can only accept certificates that have been made public record. So the owners will at least know when their domain has been attacked.
A site owner would normally know when their logs are no longer accumulating traffic that something was wrong. When their site still appears to be up and they get as far as analyzing router logs to realize that they're actually getting no traffic, even though the site appears to be functioning normally would be a huge red flag that something is very wrong. I would expect any operations team worth their salt to understand this inside of 15 minutes anyway.
Certificate Transparency may help to alert people, it's certainly a step in the right direction, but it doesn't fix the problem in my mind. I honestly don't think the problem can be fixed. All we can do is try and mitigate the risk of our trust being broken.