The Backend Engineering Show with Hussein Nasser artwork

What Caused Stripe and Ruku to stop working on May 30th 2020? Expired Root Certificate Bug Explained

The Backend Engineering Show with Hussein Nasser

English - June 02, 2020 14:08 - 8 minutes - 6 MB - ★★★★★ - 5 ratings
Technology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: MultiThreading and MultiProcessing over a Single TCP Connection, Good Idea?
Next Episode: Can your ISP block you from Watching A Single YouTube Video?

In this video I explain what happened to services such as stripe & roku which failed to establish TLS sessions because the ROOT certificate AddTrust External CA Root has expired. This is a bug in openSSL and other software the perform this kind of validation.   I explain what happened in details..   Resources https://twitter.com/sleevi_/status/1266647545675210753 https://tools.ietf.org/html/rfc4158 https://ohdear.app/blog/resolving-the-addtrust-external-ca-root-certificate-expiration

Twitter Mentions