Dennis Fisher talks with Moxie Marlinspike about his new IETF proposal, TACK, which lays out a way for sites to assert the authenticity of their public keys. They also discuss the Convergence system for replacing the CA infrastructure and the ways in which browser vendors can help enable better trust agility for users.

The Internet Engineering Task Force (IETF) has
completed a security extension to the Secure Sockets Layer (SSL)
protocol that fixes a flaw affecting browsers, servers, smart cards,
and VPN products, as well as many lower-profile devices, such as
Webcams, that contain the protocol embedded in their firmware. Read the full article. [Dark Reading]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.