Skip to: categories | main content

< Previous Entry | Next Entry >

The End of Self-Signed Certificates?

Instead of paying $100 per year (typically) for a secure certificate, many websites use a "self-signed" certificate, meaning that one of the big network agencies hasn't vouched for their credentials. The benefit to the web developer (and to users) is that a secure (encrypted) web connection can be created. The downside is that the user will be prompted upon a first visit to accept the certificate, and the risk that the site and its certificate might be fraudulent. This risk is minimal for low-profile sites (who may not have the money for a certificate) who have little risk of being spoofed via spam emails for instance. Some examples [from my own web dev experience] would be webmail for a small non-profit or a protected wiki for a small to medium sized science team. In these cases, users can be informed in advance of what to expect on the first visit, and one can be reasonably sure that hackers have not set up sites with similar URLs and content to trap the unwary.

And, for what it's worth, self-signed certs are not significantly less secure or less risky than normal certificates. A hacker can obtain a minty-fresh cert for a spoof site just as easily as a legitimate site--it just means the hacker was willing to part with $100 (or whatever it is) in pursuit of far more valuable rewards. [Update: This was just plain wrong, as indicated by the comment below, self-signed certs are only as secure as the method used to distribute them.]

But I just noticed in the new Firefox (3.0 beta 2 for Mac), that accepting a self-signed certificate is now a four-step process with messages designed to scare you away from accepting such a cert. Read the rest of this entry for screenshots. I think this will be sufficient to dissuade many users from accepting a self-signed cert, no matter what they have been told up-front.

Step 1

Step 2

Step 3

Step 4

Posted by Guy McArthur in Software Comments: (3) Trackbacks: (0)

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

Dan said,

Friday, January 4. 2008 at 22:02 (Reply)

That's pretty ominous. I wanted to pick apart one thing you said though, which is that self-signed certs are as secure as "officially" signed ones. Actually a self-signed cert makes one vulnerable to a MitM attack unless a copy of the cert has been passed out to users through some more secure medium first. If you have site A, cracker B, and user C, then B can intercept A's cert and replace it with his/her own. Since the cert isn't signed by anyone else there's no particular way to know that that happened, and they have access to all of the A/C communications.
john said,

Monday, October 6. 2008 at 12:57 (Reply)

No less vulnerable than a signed cert. The same man-in-the-middle attack can occur in the same manner. So, its the action of accepting the "untrusted" cert that is the problem. In other words, if you don't know beforehand that a site is associated with a signed cert, you don't know whether to accept it or not.
Phil said,

Wednesday, May 13. 2009 at 21:42 (Reply)

Actually, no. A signed cert is digitally signed by a CA, which has a certificate signed by CA, and so on and so forth. Eventually, you get to a "root" CA, and these are generally trusted by browsers in that they are distributed as part of the browser software itself. So if you have a Cert verified by a CA that itself is guaranteed somewhere in the chain by a trusted root CA, you do know that you can accept it and it is not spoofed by a MITM.

Add Comment

Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.