A second security issue has been found in Dell devices. The new problem - similar to the first - could leave users' personal information vulnerable, researchers backed by the US government said.
Dell said it had again released a fix, after doing the same for the first problem earlier this week.
http://www.bbc.co.uk/news/technology-34920197
Craig Young, Security Researcher at Tripwire has come up with a simple test for eDellRoot certificate. When clicking on the following link, if your system is secure you will get a browser warning. https://edellroot.secur3.us/
Whilst Brian Spector, CEO of Certivox provides the following insight into the Dell issue:
“The commercial digital certificate industry in general, is broken, and it needs to be replaced. This latest incident is just one of many whereby the commercial certificate authority's position as a single point of trust is causing serious problems.
In the short term, Dell should immediately stop delivering devices with this root certificate. In the long term, the tech industry must realise that PKI isn't fit for purpose since the entity holding the root key can have such an adverse impact on the trust relationship with end users.
The best thing to do is start over. A new distributed trust paradigm needs to be established that replaces the single points of failure model.
We are currently working with a small group of impactful partners to bring that future forward and would welcome others into our collective effort.