Dangane da waɗanda ke aiki a Kazakhstan tun daga 2016 zuwa Dokar "Akan Sadarwa", yawancin masu samar da Kazakh, ciki har da ,
, и , daga yau tsarin don katse zirga-zirgar abokin ciniki HTTPS tare da maye gurbin takardar shaidar da aka fara amfani da ita. Da farko, an shirya aiwatar da tsarin shiga tsakani a cikin 2016, amma ana jinkirin wannan aiki akai-akai kuma an fara fahimtar doka a matsayin na yau da kullun. Ana yin katsalandan damuwa game da amincin masu amfani da sha'awar kare su daga abubuwan da ke haifar da barazana.
Don kashe gargadi a cikin masu bincike game da amfani da takardar shedar kuskure ga masu amfani shigar da tsarin ku"“, wanda ake amfani da shi lokacin watsa zirga-zirgar ababen hawa zuwa shafukan waje (misali, an riga an gano canjin zirga-zirga zuwa Facebook).
Lokacin da aka kafa haɗin TLS, ainihin takaddun shaida na wurin da aka yi niyya ana maye gurbinsu da sabuwar takardar shedar da aka samar akan tashi, wanda mai binciken zai yi masa alama amintacce idan mai amfani ya ƙara “takardar tsaron ƙasa” zuwa tushen takardar shaidar. kantin sayar da, tun da takardar shaidar dummy tana da alaƙa da jerin amintattu tare da “takardar tsaron ƙasa” .
A zahiri, a Kazakhstan, kariyar da ka'idojin HTTPS ke bayarwa gaba ɗaya ta lalace, kuma duk buƙatun HTTPS ba su da bambanci da HTTP a mahangar yiwuwar sa ido da musanya zirga-zirga ta hukumomin leken asiri. Ba shi yiwuwa a sarrafa cin zarafi a cikin irin wannan makirci, gami da idan maɓallan ɓoyayyen da ke da alaƙa da “takardar tsaro ta ƙasa” ta faɗo cikin wasu hannaye sakamakon yaɗuwar.
Masu haɓaka Browser ƙara tushen takardar shaidar da aka yi amfani da shi don tsangwama zuwa lissafin soke takardar shaidar (OneCRL), kamar kwanan nan Mozilla tare da takaddun shaida daga DarkMatter takardar shaida. Amma ma'anar irin wannan aiki ba a bayyana gaba ɗaya ba (a cikin tattaunawar da suka gabata an yi la'akari da cewa ba shi da amfani), tunda a cikin yanayin "takardar tsaro ta ƙasa" wannan takardar shaidar ba ta da sarƙoƙi na aminci da farko kuma ba tare da mai amfani ya shigar da takardar shaidar ba. masu bincike za su riga sun nuna gargadi. A gefe guda kuma, rashin mayar da martani daga masana'antun na'ura mai ba da hanya tsakanin hanyoyin sadarwa na iya ƙarfafa ƙaddamar da irin wannan tsarin a wasu ƙasashe. A matsayin zaɓi, an kuma ba da shawarar aiwatar da sabon nuna alama don shigar da takaddun shaida a cikin gida da aka kama a harin MITM.
source: budenet.ru