Certificate transparency on blockchains

This week Google learned of another batch of fraudulently issued certificates for several of their domains. At the end of the post they made a renewed call for Certificate Transparency. In this post, we’ll use the acronym CT to refer to Google’s implementation of the general concept of certificate transparency, and we’ll explore other technologies […]

DNSChain 0.5 Released: HTTPS + Openname Resolver API + More!

DNSChain 0.5 brings about many new features. It’s important to remember, however, that this project is not really about new bells and whistles. It’s about what kind of a world we want to live in, and for us the answer is clear: we want to live in a free world, and that means addressing these […]

The Trouble with Certificate Transparency

Update: March 25, 2015, see also: Certificate transparency on blockchains Ben Laurie, project lead for Google’s Certificate Transparency (CT), recently published an article wherein he compared CT against various efforts to secure Internet communication world-wide from Man-In-The-Middle Attacks (MITM), including DNSChain. In it, he made several claims about CT and related topics: That CT leads […]

okTurtles Demo at SOUPS 2014 (EFF CUP Crypto Usability Prize)

Oh boy! Lots of news to share about okTurtles and DNSChain in the upcoming days: These projects are now officially under the stewardship of a new non-profit organization called the okTurtles Foundation (more on this coming soon). We’re going to be moving the site from okturtles.com ➜ okturtles.org We gave a very successful demo at SOUPS 2014’s EFF CUP […]

How to downgrade a linux kernel on Debian

We envision a future were owning and administering your own personal server is simple and commonplace. This vision naturally arises as more and more people begin to use and advocate distributed and decentralized technologies like Bitcoin and our very own DNSChain. Instead of learning to drive, they’ll learn to administrate a server. 🙂 So, along […]

How to update OpenSSL on Debian testing (Jessie) for #Heartbleed

This post is about the OpenSSL Heartbleed vulnerability that’s affecting the internet right now and not directly related to the okTurtles project. April 8, 2014 6PM EST: Looks like for this one the Debian team moved faster than their typical “minimum two-day migration” and got the fix into testing a couple of minutes ago. Good […]

Introducing the dotDNS metaTLD

We’ve taken several important steps on the road to making “MITM-proof communication” on your favorite websites possible. We released the first version of DNSChain, the blockchain-based DNS resolver (fully compatible with canonical DNS). We launched the first public DNSChain server. Its 600 lines of CoffeeScript have been running flawlessly since February 6th. We launched the […]