Alternatives and Enhancements to CAs for a Secure Web presented at RSAeu 2013

by Ben Laurie, Benjamin Wilson,

Summary : Certification Authority (CA) breaches in 2011 created renewed interest in patching the vulnerabilities of TLS. Alternatives and enhancements such as DANE, Certificate Transparency, OCSP Stapling, HSTS and others have targeted some of the perceived shortcomings. This session will examine the most promising fixes to publicly trusted roots and certificates, revealing what works - and what doesn't.
- See more at: