While that's true, what enabled Flame to use that to sign code was a chain-of-tr... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		beagle3 on June 22, 2012 \| parent \| context \| favorite \| on: Ubuntu's Plans To Implement UEFI SecureBoot: No GR... While that's true, what enabled Flame to use that to sign code was a chain-of-trust mistake as nl pointed above -- and there's no guarantee that such chain-of-trust mistakes will not happen in the future.

sseveran on June 24, 2012 [–]

Chain of trusts always require the chain to be secure. In fact there will undoubtedly be future chain of trust attacks on certificates.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact