Moscow to issue HTTPS certs to Russian websites

Moscow has set up its own certificate authority to issue TLS certs to Russians affected by sanctions or otherwise punished for president Putin's invasion of Ukraine.

A notice on the government's unified public service portal states that the certificates will be made available to Russian websites unable to renew or obtain security certificates as a knock-on effect of Western sanctions and organizations refusing to support Russian customers. These certs are primarily useful for providing secure HTTPS connections. Delivery of the certificates is promised within five days of requests.

The portal is silent on which browsers will accept the certs. This is a critical matter, because if browsers don't recognize or trust the certificate authority that issued a cert, a secure connection isn't generally possible. The Register cannot imagine any of the mainstream browser devs will rush to make these Russian certs work in their applications.

Russians do have a local alternative. Yandex, the nation's Google analog, has won 16 per cent local market share with its YaBrowser – well behind the 55 per cent share Stat Counter attributes to Google's Chrome.

If Yandex recognizes Russia's certs, and can quickly upgrade users and win tens of million more, Russia's plans just might fly. As a bonus for Putin, it's rather easy for Kremlin spies to intercept, decrypt, and snoop on connections encrypted using certificates issued by the government. The more websites using Moscow-issued certs, the more connections Putin's agents can quietly monitor.

Russia is meanwhile believed to be behind recent disruption at Ukrainian telecoms providers. Doug Madory, director of internet analysis at network observability firm Kentik, has offered the following analysis:

Large outages today in #Ukraine️.

Ukrtelecom (AS6849) down nationally at 9:35 UTC (11:35am local) for ~40min.

Triolan (AS13188) has been down nationally for over 12hrs due to reported cyber attack. Still almost entirely offline.

Vizes from @gatech_ioda and @kentikinc: pic.twitter.com/v1wmKsR7kE

— Doug Madory (@DougMadory) March 10, 2022

Forbes reported that Ukrainian ISP Triolan attributed its outages to a pair of cyber attacks on its infrastructure.

• Conflict in Ukraine disrupts fragile supply chain recovery
• Sony Interactive Entertainment pulls PlayStation from Russia
• Ukraine invasion: We should consider internet sanctions, says ICANN ex-CEO
• Huawei UK board members resign over silence on Ukraine invasion

Russia appears to have a need to run some defense, too, because entities using the name and iconography of hacktivist collective Anonymous (that's EUTNAIOA) claim to have cracked Russian telecoms and media regulator Roskomnadzor and lifted 820GB of data from one of its state offices.

A post describes the data as comprising 364,000 files, 529GB of which appear to be largely email – which EUTNAIOA has warned needs to be handled with care as attachments carry malware – with the remainder being database files that detail legal investigations and HR matters.

The authors of EUTNAIOA's post write that they plan to release the data once they figure out how to extract it, and hope that it informs Russians about how their government censors local media.

That media, however, is forbidden from carrying any news that might let Russians understand the heinous nature of its illegal invasion of Ukraine. The brave Russians that have protested the war in public have been swiftly arrested, their fates unknown.

Cryptography – which Russia has rightly identified as a key issue in the economic dimension of this conflict – will also be a critical tool if the flow of information unmolested by Vladimir Putin ever resumes in Russia. ®