- cross-posted to:
- hackernews@derp.foo
- cross-posted to:
- hackernews@derp.foo
EU Article 45 requires that browsers trust certificate authorities appointed by governments::The EU is poised to pass a sweeping new regulation, eIDAS 2.0. Buried deep in the text is Article 45, which returns us to the dark ages of 2011, when certificate authorities (CAs) could collaborate with governments to spy on encrypted traffic—and get away with it. Article 45 forbids browsers from…
They wouldn’t get banned. That’s the problem. The article mandates that these certificates are exempt from the usual repercussions for acting out
You would get warnings from the browser, plugins removing those certs and versions of browsers without them (EU version and non-EU version). I
You just went from complaining about having to manually trust certificates, to acting like you’d be ok having to install a browser plugin that tells you which certs to trust….
Why did you need government regulation to solve the original problem? Couldn’t you have just installed a plugin for it?