all InfoSec news
Article 45 Will Roll Back Web Security by 12 Years
Deeplinks www.eff.org
The EU is poised to pass a sweeping new regulation, eIDAS 2.0. Buried deep in the text is Article 45, which returns us to the dark ages of 2011, when certificate authorities (CAs) could collaborate with governments to spy on encrypted traffic—and get away with it. Article 45 forbids browsers from enforcing modern security requirements on certain CAs without the approval of an EU member government. Which CAs? Specifically the CAs that were appointed by the government, which in …
ages article back browsers certificate certificate authorities dark eidas encrypted encrypted traffic pass regulation roll security spy text traffic web web security