Seems to me pretty clear that SSL is kind of a joke as far as security goes, a little like WEP wireless security. Yes, unlike WEP if everything is working properly SSL is in theory safe. But there are so many gotchas, from the byzantine CA system to the fact that most of the time when a browser warns you that a certificate is bad there's nothing wrong, SSL just doesn't hold up to a determined attacker (especially a government.)
WEP is completely broken. Even if you do everything right, it's trivial for an attacker to access a WEP-protected network.
most of the time when a browser warns you that a certificate is bad there's nothing wrong
I've never had a false-positive browser warning. I assume you're complaining about Firefox's and Chrome's treatment of self-signed certificates, which is completely appropriate. Self-signed certificates should always be rejected, unless the user has manually added them to the keystore.
Users should not accept self-signed certificates. IMO, browsers shouldn't even offer them the option. If someone is smart enough to verify the certificate fingerprint, they can add it to their certificate store manually.
I disagree. SSL is meant to do 2 things: prove identity and provide encryption. Self-signed certificates do just the latter. While, yes, they might provide a false sense of security in that they can't prevent MITM attacks, at least you're not sending out data in the open.
Still, if protection from completely passive eavesdropping is all you care about, you can use anonymous Diffie-Hellman to negotiate an ephemeral key. The protocol supports it. Heck a lot of home-grown client software doesn't even check the name on the cert and ends up with effectively just that by accident.
Feel free to add your own self-signed exceptions. I find it useful myself.
But that's not what HTTPS is and it's not how web browsers work. By definition, the lock icon in the user's browser means that the server (as displayed in the URL) has been authenticated to the user.
No, SSL is not as bad as WEP. If you follow all the rules and do things right with WEP, everyone knows how to break it. It's like doing rot-13 correctly. No matter how correct you are, you are not protected. In theory and in practice, WEP is insecure.
SSL is possible and commonly done correctly. It is not a joke security wise. (If it is a security joke, show me something that isn't a security joke).
Unless you are a government (or have similar resources), you cannot hack SSL.
What are the rules? Hand-pick all of your certificate authorities and regularly check up on them? The idea that you can have dozens of authorities any one of whom might be compromised and be secure is intrinsically broken.
SSL would work a lot better if it worked more like SSH, where you could check to see if you have the right fingerprint at the beginning. And of course you can use it like this, but your browser tells you horrible things will happen. Alternately, a true web of trust with something more like the notaries might be useful.
But when it comes right down to it, any scheme of communication that relies on a variety of third parties for security isn't going to work, because you never know when one or more trusted parties are the eavesdropper.
Sure, the crypto works fine, but in practice good crypto often just lulls people into a false sense of security. "The browser shows https" is really a pretty weak indicator that no MITM is happening. I especially say this in contrast to something like an SSH handshake, which is a pretty strong indicator that no MITM is happening, especially if you validate your keys.
SSL would work a lot better if it worked more like SSH, where you could check to see if you have the right fingerprint at the beginning.
And the 95% of the population who don't know what a key fingerprint are, the people who are most likely to click on random things online, those people will just blindly accept that from every site on the web and then they can get MitM'ed easily by people in Starbucks. Right now you can't do that with HTTPS.
Odds that this was before Gmail instituted HTTPS or that there is some other explanation that the reporter missed: 99.9%
However, importance if the former is the case: World changing news. But extremely unlikely.