-by iphone-tips-tricks.com - Apple has just rolled out security update 2011-005 (Lion) and security update 2011-005 (Snow Leopard), which addresses the certificate trust policy regarding DigiNotar certificates. The update removes DigiNotar from the list of trusted root certificates, the list of Extended Validation certificate authorities and configuring the default system trust settings so DigiNotar certificates -- those issued by DigitNotar itself and other authorities -- are not trusted. So your Mac OSX machine and Safari is updated after installing this update. (Chrome, Firefox and Internet Explorer are in the same progress fighting this very serious internet security problem)
The question is, when does Apple sent us an iOS update to address this issue for our iPad, iPhone and iPod Touch? My guess is that Apple is working on it and will send an update it soon. Why? When we look back in April, the root authority of Comodo, also a trusted CA certificates issuing firm, had been breached, very similar to Diginotar. Apple had combined the iOS 4.3.2 update, which fixed other issues, with the blacklisting of Comodo's rougue SSL certificates. So when I am guessing right, iOS 4.3.6 will come out soon with at least the blacklisting of Diginotar rougue SSL certificates for iOS. Currently CA certificates issuing firm Globalsign has stopped (stay posted here)issuing new certificates to customers and is investigating if they are breached as well after someone (possibly the hacker of both Comodo and Diginotar) on internet pointing to the direction of Globalsign as the next victim. To give you an idea, of the list of trusted roots in iOS 4.1 see HERE. For the rest we wait and keep watching iTunes for updates to come.
Maybe interesting update: Globalsign says 'isolated' www.globalsign.com has been breached.
Labels:
comodohacker,
diginotar,
iphone tips tricks; ipad tips tricks
Thanks for reading iPhone TIPS: When To Remove Diginotar From iOS Trusted Roots?. Please share...!
