How close to a Web security meltdown did we get? – Iranian hackers obtain fraudulent HTTPS certificates:
Technical Analysis by Peter Eckersley “On March 15th, an HTTPS/TLS Certificate Authority (CA) was tricked into issuing fraudulent certificates that posed a dire risk to Internet security. Based on currently available information, the incident got close to — but was not quite — an Internet-wide security meltdown. As this post will explain, these events show why we urgently need to start reinforcing the system that is currently used to authenticate and identify secure websites and email systems. [...]” https://www.eff.org/deeplinks/2011/03/iranian-hackers-obtain-fraudulent-https
