Open-source 64-ish-bit serial number gen snafu sparks TLS security cert revoke runaround
64 bits of cert ID on the wall, 64 bits of ID. Take the top bit down, don't pass it around, 63 bits of cert ID on the wall... A bunfight over a controversial UAE mobile security company led to the discovery that millions of TLS security certificates have been improperly issued - thanks to a dodgy default configuration in popular certificate authority (CA) management software."