5점중 4점 받음

작성: olegoz, 날짜: 4월 21, 2014 · 고유 주소

The Heartbleed bug has exposed both the importance and inadequacies of Certificate Patrol. Need to deal better with the torrent of changing certificates (like silently accepting when the only change is the issue/expiration dates moving forward). Also would be great to flag a certificate issued after Heartbleed disclosure being replaced by one issued prior to that as a Very High Risk event, as that's the only way to catch an attack using stolen server keys.