Internet service providers (ISPs) based in Kazakhstan are being instructed to force their users to install government-issued root certificates on their devices to allow agencies to intercept web traffic.
The increasingly-widespread Hyper Text Transfer Protocol Secure (HTTPS) refers to the transmission of data, ordinarily channelled via HTTP, sent instead over an encrypted connection. It’s said to raise the level of security and privacy for web users.
The Kazakh government, however, has taken concrete steps towards bypassing this added layer of protection by launching an encryption-busting Qaznet Trust Certificate in the nation’s capital Nur-Sultan, according to local media. This is more commonly known in security circles as a man in the middle (MiTM) attack.