Analysis of ‘Operation Black Tulip’: Certificate authorities lose authority
The Agency releases its analysis of the Diginotar- ‘Operation Black Tulip’ case, where a digital certificate authority suffered a cyber-attack.
Published on December 05, 2011
In the attack, false certificates were created for hundreds of websites, including Google and Skype. Reports indicate that the cyber-attack started in mid-June, and that for two months, false certificates were used to eavesdrop on users in Iran. In its new analysis, the Agency identifies three major issues, and suggests remedies to these.
Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!