A recently discovered hardware device, for sale to law-enforcement agencies, has raised concerns about the security of SSL. The encryption itself is secure: the weak link is the trust placed in Certificate Authorities, trust which they might not deserve.
