Thread: [SOLVED]Security: Fraudulent *.google.com Certificate
View Single Post
Rob1n is offline Rob1n
2011-09-01 , 09:40
Posts: 3,617 | Thanked: 2,412 times | Joined on Nov 2009 @ Cambridge, UK
#20
Originally Posted by peterleinchen View Post
1. how to restore the certificate, once its resolved by DigiNotar?
There's nothing to be resolved. The company is simply too incompetent to run a CA - they had no idea what certificates had been fraudulently issued, and apparently have had sections of their website defaced for several years now.

Originally Posted by peterleinchen View Post
2. as I remember, a few months ago, there has been another certicate issue with I-do-not-remember-anymore. Does anyone remember and knows, if this also affects our microb (surely). Maybe post those issuers also to delete the affected certs also, please???
There was (at least) one other CA hacked recently and some faulty certificates issued, yes. This was spotted within days and all certificates were revoked though, whereas it took DigiNotar several months to spot the hack, and they failed to revoke many of the issued certificates.

Originally Posted by peterleinchen View Post
So, how we will be safe in future without updates from Nokia?
Is there a site to check all installed certs against validity/safety?
The only certificates held on the phone should be the CA certificates (and any you've manually added). These are then used to authenticate any certificates used on websites. The CA certificates will only need updating if the CA becomes untrusted (as DigiNotar has), the certificate expires and a new one needs to be issued (an uncommon occurrence - CA certificates have very long terms), or a new CA needs to be added. The latter two can be done manually though, via the browser.
 

The Following 2 Users Say Thank You to Rob1n For This Useful Post: