Lars Dɪᴇᴄᴋᴏᴡ – Encryption on the Web for everyone
YAPC::Europe in Riga, 17 August 2011
∙ introduction: why do we need end-to-end encryption?
∙ instructions for creating your own certificates, explanation of Server Name Indication
∙ motivation for the talk: automatic validation in libwww-perl v6 and the problems with it in the wild, Firefox extension Firesheep, forgeries at Comodo
∙ summary of the findings from the SSL observatory at the Electronic Frontiers Foundation
∙ what CAs are good for and how to get rid of them
∙ prospect alternatives: trust on first use + Certificate Patrol, Monkeysphere