Hacker News with Generative AI: Certificate Authorities

Decentralized Naming and Certificate Authority (handshake.org)
Handshake is a decentralized, permissionless naming protocol where every peer is validating and in charge of managing the root DNS naming zone with the goal of creating an alternative to existing Certificate Authorities and naming systems.

Decentralization, Blockchain, DNS, Certificate Authorities, Security

17 points by nkjoep 45 days ago | 1 comments

Let's Encrypt Ending Support for Expiration Notification Emails (letsencrypt.org)

Security, Email, Certificate Authorities, Technology, Online Security

80 points by mdwern 71 days ago | 12 comments

Build a tiny CA for your homelab with a Raspberry Pi (smallstep.com)
TL;DR In this tutorial, we're going to build a tiny, standalone, online Certificate Authority (CA) that will mint TLS certificates and is secured with a YubiKey. It will be an internal ACME server on our local network (ACME is the same protocol used by Let's Encrypt). The YubiKey will securely store the CA private keys and sign certificates, acting as a cheap alternative to a Hardware Security Module (HSM).

Security, Raspberry Pi, Networking, Certificate Authorities, DIY

229 points by timkq 74 days ago | 54 comments

Certificate Authorities and the Fragility of Internet Safety (azeemba.com)
Mistakes by CAs undermine HTTPS and safety on the internet

Security, Internet, Certificate Authorities

37 points by LinuxBender 119 days ago | 31 comments

Jeremy Rowley resigns from DigiCert due to mass-revocation incident (mozilla.org)

Cybersecurity, Resignation, Certificate Authorities

130 points by CaliforniaKarl 239 days ago | 65 comments