back

Everything you always wanted to know about Certificate Transparency

(but were afraid to ask)

If you suspend your transcription on amara.org, please add a timestamp below to indicate how far you progressed! This will help others to resume your work!

Please do not press “publish” on amara.org to save your progress, use “save draft” instead. Only press “publish” when you're done with quality control.

Video duration
01:00:07
Language
English
Abstract
Certificate transparency - what is it, and what can be done with it?

Certificate Transparency is the new kid on the block of TLS. Specified as RFC6962 it is designed to prevent fraudulently issued TLS certificates, and detect wrongdoing from Certificate Authorities.

This talk will present Certificate Transparency in full details. Beginning from the attacks it prevents, key players and threat models, we will dive into the public data that is readily available and present ideas how to enhance its ecosystem as a whole.

Talk ID
8167
Event:
33c3
Day
1
Room
Saal 6
Start
11:30 a.m.
Duration
01:00:00
Track
Security
Type of
lecture
Speaker
Martin Schmiedecker
Talk Slug & media link
33c3-8167-everything_you_always_wanted_to_know_about_certificate_transparency

Talk & Speaker speed statistics

Very rough underestimation:
127.3 wpm
725.9 spm
127.7 wpm
736.0 spm
100.0% Checking done100.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
0.0% Nothing done yet0.0%
  
29.9% Checking done29.9%
70.1% Nothing done yet70.1%

Work on this video on Amara!

French: Translated until

Last revision: 1 year, 2 months ago

Talk & Speaker speed statistics with word clouds

Whole talk:
127.3 wpm
725.9 spm
certificatecertificateslogcertificationlogsissuedtreehashgooglepeoplecourseauthoritytransparencysctthingpublicissuegoogle.comtrafficmerkletlsocspverifycastrustsymantecsignedentirehttpsrootincludebrowserthingslaughterstoresauthoritiesgoodopensecurityissuesintrospectionnicekeybadvalidoperatorclientquestionwebsitespecific
Martin Schmiedecker:
127.7 wpm
736.0 spm
certificatecertificateslogcertificationlogshashissuedpeoplegoogletreetransparencyauthoritypubliccourseissuethinggoogle.comtrafficmerkleverifysctcassymantechttpstrusttlsthingsbrowserentiresignedincluderootsecurityopengoodwebsitevalidauthoritiesstoresintrospectionkeyissuesoperatornicelaughterclientdomainexampledataspecific