Author: Andy Parkins 2011-12-19 11:44:59
Published on: 2011-12-19T11:44:59+00:00
In a discussion on using HTTPS for Bitcoin, Jorge Timón suggests that HTTPS may not be the best option due to potential attacks, but asks if a warning message could be added. However, Dr. Andy Parkins points out that the issue with HTTPS is more social than technical, as multiple Certificate Authorities (CAs) have been coerced or scammed into issuing fake certificates. The use of a CA certificate implies trust in the issuer, and currently there are too many CAs with misplaced trust. While this problem is outside of Bitcoin's scope, Dr. Parkins suggests restricting the trusted CA certificates to those with good identity verification practices rather than having pre-installed trust in browsers.
Updated on: 2023-06-04T21:51:11.478175+00:00