Get Your Marshmallows

By Rich

Last week we learned that not only did Symantec mess up managing their root SSL certificates, but they also botched their audit so bad Google may remove them from Chrome and other products. This is just one example in a long history of security companies failing to practice what they preach. From poor code development practices to weak internal controls, the only new thing in this instance is the combination of getting caught, potential consequences, and a lack of wiggle room.

Watch or listen:

No Related Posts

The free encryption infrastructure that you referred to is “Let’s Encrypt” from the EFF.

By Mark

If you like to leave comments, and aren’t a spammer, register for the site and email us at and we’ll turn off moderation for your account.