The SSL certificate system, designed in the early 1990s so that internet users can be sure website owners are who they claim to be, has outgrown itself and requires an extensive facelift, particularly in light of two major breaches this year, according to Gustaf Bjorksten, technology director of, a nonprofit digital advocacy group. In this podcast, Bjorksten discusses why the SSL system has failed and what is necessary to improve its existing design and implementation. He helped author a call-to-action paper, and believes the future trust and privacy of the internet relies on finding a solution.