Comment 35 for bug 1490804
Revision history for this message
| Robert Clark (robert-clark) wrote Re: PKI Token Revocation Bypass | #35 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
9199653
demo site
(Get the code!)
Ouch, I'd love to do a security blogpost on this once it's announced, a full root cause analysis.
I'm not close-enough to Keystone to understand the full impact of all the the mitigation options however it's clear that this is a pretty severe issue.
I know the numbers are hard to quantify but "thumb in the air" - what percentage of deployments use PKI tokens?
-Rob