Problems in Validation (cont.)


Software shipping with embedded root CA certificates can (and will) be trojaned

What if the next Windows trojan installs a new rogue root CA certificate?

How do you validate a root CA certificate, anyhow? (out-of-band)

Even when the CA signatures are legit, a chosen-protocol attack may still allow monkey-in-the-middle between applications