Kazakhstan government is now intercepting all HTTPS traffic - which is why a trusted root certificate is important

Starting Wednesday, July 17, 2019, the Kazakhstan government has started intercepting all HTTPS internet traffic inside its borders.

Local internet service providers (ISPs) have been instructed by the local government to force their respective users into installing a government-issued certificate on all devices, and in every browser. The certificate, once installed, will allow local government agencies to decrypt users' HTTPS traffic, look at its content, encrypt it again with their certificate, and send it to its destination.

Ministry officials said the measure was "aimed at enhancing the protection of citizens, government bodies and private companies from hacker attacks, Internet fraudsters and other types of cyber threats."

SSL can provide excellent security but not if someone is decrypting and re-encrypting the data in the middle. We are also seeing more and more security and privacy dedicated browsers appearing for use such as Tor browser, Brave browser, etc.

See #^https://www.zdnet.com/article/kazakhstan-government-is-now-intercepting-all-https-traffic/

#security #SSL
#^Kazakhstan government is now intercepting all HTTPS traffic | ZDNet

Kazakh government first wanted to intercept all HTTPS traffic way back in 2016, but they backed off after several lawsuits.

source https://gadgeteer.co.za/node/3364