11 April 2011

This paper introduces the compelled cer-
ti cate creation attack, in which government
agencies may compel a certi cate authority to
issue false SSL certi cates that can be used by
intelligence agencies to covertly intercept and
hijack individuals' secure Web-based commu-
nications

Got commodo?

Got stuxnet?