Article 45 Will Roll Back Web Security by 12 Years
www.eff.org
The EU is poised to pass a sweeping new regulation, eIDAS 2.0. Buried deep in the text is Article 45, which returns us to the dark ages of 2011, when certificate authorities (CAs) could collaborate with governments to spy on encrypted traffic—and get away with it. Article 45 forbids browsers from...

EU Article 45 requires that browsers trust certificate authorities appointed by governments::The EU is poised to pass a sweeping new regulation, eIDAS 2.0. Buried deep in the text is Article 45, which returns us to the dark ages of 2011, when certificate authorities (CAs) could collaborate with governments to spy on encrypted traffic—and get away with it. Article 45 forbids browsers from…

    • @jabjoe@feddit.ukEnglish
      88 months ago

      Large companies only care profit. They will hand over your privacy/security in a blank of an eye if to not do so costs them. Snowdon showed companies hand stuff to governments. I doubt it’s changed. They are heart money machines remember.

      Least governments are in theory democratically accountable. Having to trust someone at all is really a problem with CAs. Maybe you want different CAs you can choose from. I’d trust one from nonprofit FOSS groups like Debian more than big tech or governments to be honest.