[cabfpub] Critical Vulnerability Scenario
james at sirburton.com
Fri Jan 19 10:56:31 UTC 2018
I know every CA already has a disaster plan in place to maintain certain
level of continuity in case of failure, weather and etc. But is there a
global contingency plan in place if a critical vulnerability was found in
one of the key systems which required immediate change over to a different
key-size, signature algorithm or etc.
Could every CA right now in operation handle such a scenario and reissue
nearly every certificate (if necessary) immediately? How long would it
take? Could CT handle such an influx of requests?
The goal is to achieve 100% secure web and I feel that a global
contingency plan is needed in case of the unlikely event of this scenario
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Public