Valódi, vagy csak annak vélt biztonság a böngészésben: SSL tanúsítványok = Real or supposed security in browsing: SSL certificates

At the beginning, when the would-be internet was started, security was not a
point: nobody could even imagine that the day would come when everybody would
get access to The Internet, even with bad intents. The points of security came into
the foreground later with the rightful need for security in everyday digital life. One,
if not the most frequent, realization of security is the (supposedly) secure browsing,
the https. In this case not only the data traffic is encrypted between the user's
browser and the remote server, but the authenticity of the remote server (netbank,
Facebook, Gmail, etc.) is also proven via SSL/TLS certificates. Investigating the
publicly known security incidents related to these certificates and the certificate
handling mechanism of the web browsers we will find different threats and risks,
some of them may be serious. There are a lot of possibilities to manipulate the SSL/
TLS certificates to make it possible to redirect and/or know and/or alter the data
traffic of browsers. Most of these possibilities for manipulating can be disclosed
by applying relatively simple rules that can significantly strengthen security.