[TLS] SSL cert - CA issuer question - WIndows Event Reporting CA
M K Saravanan <mksarav@gmail.com> Wed, 10 May 2023 00:37 UTC
Return-Path: <mksarav@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22995C151B0D for <tls@ietfa.amsl.com>; Tue, 9 May 2023 17:37:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.475
X-Spam-Level:
X-Spam-Status: No, score=-0.475 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_IMAGE_ONLY_24=1.618, HTML_IMAGE_RATIO_02=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u7mJY06zF5DB for <tls@ietfa.amsl.com>; Tue, 9 May 2023 17:37:16 -0700 (PDT)
Received: from mail-ot1-x32e.google.com (mail-ot1-x32e.google.com [IPv6:2607:f8b0:4864:20::32e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 162AEC14CF13 for <tls@ietf.org>; Tue, 9 May 2023 17:37:16 -0700 (PDT)
Received: by mail-ot1-x32e.google.com with SMTP id 46e09a7af769-6ab2d14e999so167533a34.0 for <tls@ietf.org>; Tue, 09 May 2023 17:37:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1683679033; x=1686271033; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=ydLDmmoRjuaCZhlm7XzsGnD+Cd+NAoATeN4rLo/y+uQ=; b=dQJCiMVKi1MgL8iZ0jbUlOmmvwIRPD0pNuK5y484vqeov/yhe3mSJaauAqnsccS1pC NbMj/jKFORQ4zA1oIb2AQ3I1Wk6JnVVJ4iTzKH/OaAbWbtpQxXg6HJipTzYgGlFQUeWq B2eYzpC7UwoKwlnJU2z3wnj3PlUySQjT5UCzZl2RpWufW4QMT0xzg8rzIzB2eeXV/EPv 7HdqHP4UlHhe3xediX9ssCZbRbTpZPsBIvuAA1+yCmoqJVR0X/DVm1HDEF9kL16x9qjt 2sWQIM1bcE2XZVMvcD3kmTaMQ9nzMVKfHWp5kk57bjRsEZCOZkc1YnUpBAYIEZ6AXb0x a+Rg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1683679033; x=1686271033; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=ydLDmmoRjuaCZhlm7XzsGnD+Cd+NAoATeN4rLo/y+uQ=; b=DzbAqtjjwwrRP2rqfDwPIGKAvXKtqTULE7nt1T6djVw/l/J99FeaSklgUygYmyYZY6 cCEe0BPSPOW6kv2Ok9P+iZgU9NSjES2nT+HIvoMU7XGZ44t0H+NgqrEEF4+wm99HRSGs rC00V66WQNTOpOIydMJynjJyzJXJxdyTalEACZIdz/ojn2JMBit0a+TAFiJGoREprsyu y+/vx3+ANx020OMVB5TZw2U15VUcD1JK4LkZD4pCw65nhj4KhRQ05JBi+wCqMRQC45wX L9QPS0X7lWgmwI+TffZ0ZKAl2Mmnlgqi+4S43pCbkzRe/KZh0oWIsTa4j8wl+ZNyShUG Xflg==
X-Gm-Message-State: AC+VfDwoFubXCwRaK+97pTLfsdGrMxBRPSRL4qTtDMphUsdEaePQzkUh apinnHEa5Vluf0Q5YT3OZMbYYYyE5vHzoR4P+leZkSZvezEs+Q==
X-Google-Smtp-Source: ACHHUZ4ckpVUQvqAYijD6v1DdXu71D9cLu/77MIFaMGIZSuhLLNlhhEJzgUj3ftazYGOOghMyroNVcBtXd8U7/Kqw8Y=
X-Received: by 2002:a05:6808:68e:b0:38e:334:d0ce with SMTP id k14-20020a056808068e00b0038e0334d0cemr2196398oig.27.1683679032356; Tue, 09 May 2023 17:37:12 -0700 (PDT)
MIME-Version: 1.0
From: M K Saravanan <mksarav@gmail.com>
Message-ID: <CAG5P2e8xQSyBChic=xgqq0FUMfmZXSyXXczb+OkdacthUDZcWw@mail.gmail.com>
To: "<tls@ietf.org>" <tls@ietf.org>
Content-Type: multipart/related; boundary="000000000000a457f905fb4c12fe"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/bHNWShLD233O6iiKi81nfnKnYGY>
X-Mailman-Approved-At: Wed, 07 Jun 2023 06:52:04 -0700
Subject: [TLS] SSL cert - CA issuer question - WIndows Event Reporting CA
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
Date: Wed, 10 May 2023 00:37:20 -0000
X-Original-Date: Wed, 10 May 2023 08:36:59 +0800
X-List-Received-Date: Wed, 10 May 2023 00:37:20 -0000
Hi, Off late I noticed a behaviour with many https websites. When I first access that website, for e.g. https://www.cloudflare.com the issuer CA is shown as “Windows Event Reporting CA”. When I access the same site subsequently, it is showing proper CA as “ Cloudflare Inc ECC CA -3”. [image: image.png] [image: image.png] What is this Windows Event Reporting CA? Why does it show this as CA when accessing for the first time? With regards, Saravanan
- [TLS] SSL cert - CA issuer question - WIndows Eve… M K Saravanan
- Re: [TLS] SSL cert - CA issuer question - WIndows… Martin Thomson
- Re: [TLS] [EXTERNAL] Re: SSL cert - CA issuer que… Andrei Popov
- Re: [TLS] SSL cert - CA issuer question - WIndows… Bas Westerbaan
- Re: [TLS] SSL cert - CA issuer question - WIndows… M K Saravanan