All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Firefox Deploying CRLite for Private Certificate Revocation Checking

By

TangerineDream

9mo ago· 6 min readenNews
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

The bagel they save for the regulars. Don't skim, savour.

Score100TypenewsSentimentpositive

Summary

Firefox has implemented CRLite, a new certificate revocation checking system that provides comprehensive security without compromising user privacy. Unlike traditional methods that require querying external servers and potentially revealing browsing history, CRLite uses a compact, regularly updated filter that allows Firefox to check certificate revocation status locally without exposing user activity. This makes Firefox the first browser to offer both comprehensive certificate checking and complete privacy protection simultaneously.

Key quotes

· 3 pulled
Firefox is now the first and the only browser to deploy fast and comprehensive certificate revocation checking that does not reveal your browsing activity to anyone (not even to Mozilla).
These certificates are the cornerstones of ubiquitous encryption and a key part of our vision for the web.
A revoked certificate poses a serious security risk and should not be trusted.
Snippet from the RSS feed
Firefox is now the first and the only browser to deploy fast and comprehensive certificate revocation checking that does not reveal your browsing activity to anyone (not even to Mozilla). ...

You might also wanna read

Third-Party Service Inspector: Analyze Website Trackers and Scripts

The article describes a tool called 'Third-party service inspector' that allows users to see and analyze all third-party services, trackers,

varlog.in·1mo ago

Pentagon Confirms Adversaries Using Commercial Phone Location Data to Target US Troops

The Pentagon was warned for nearly a decade that commercial location data from mobile phones could be exploited by adversaries to track US m

wired.com·1d ago

New browser-based side-channel attack uses SSD activity analysis to spy on users

Researchers have discovered a new browser-based side-channel attack that can spy on users by analyzing SSD (Solid State Drive) activity thro

arstechnica.com·1d ago

New FROST technique lets websites track visitors by analyzing SSD activity

A new tracking technique called FROST (fingerprinting remotely using OPFS-based SSD timing) allows websites to spy on visitors by analyzing

23.social·4d ago

Trump Mobile investigates data leak exposing customer names and contact details

A potential security flaw on Trump Mobile's website may have exposed personal information (names, emails, addresses, phone numbers) of thous

independent.co.uk·4d ago

Third-party UK Visa Portal exposed 100,000+ applicants' passports and selfies online

A third-party website called UK Visa Portal, which is not affiliated with the U.K. government, has been publicly exposing the passports and

techcrunch.com·4d ago