One more response from the badly overcrowded technical perspective… I am good at what I do precisely because I know how NOT to think like the rest of the pocket protector set. (I also know how NOT to write an essay for the non-technical business community.)

I purposefully extracted myself from overcrowded technical perspective and asked myself why businesses would chose LE over the traditional CAs… And the reasons all boil down to “free” and “automated.”

I am not writing about the inner workings of the PKI. I am writing about the dangers of “fire and forget” complacency…

Here is a little dose of reality: https://resources.infosecinstitute.com/cybercrime-exploits-digital-certificates/

In practically all of the instances written about in the above-linked article you had some form of human error… Again, the PKI is only as good as its implementation by human beings. And encryption is only as trustworthy as the KMS from which the certificates arise.

Written by

I am a charter member of the pocket-protector set, but old enough to make fun of them and otherwise have a healthy skepticism of tech. https://goo.gl/2z5Snr

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store