A Call to Reconsider Certification Authority Authorization
Research output: Contribution to journal › Research article › Contributed › peer-review
Contributors
Abstract
Certification Authority Authentication (CAA) is a safeguard against illegitimate certificate issuance. We show how shortcomings in CAA concepts and operational aspects undermine its effectiveness in preventing certificate misissuance. Our discussion reveals pitfalls and highlights best practices when designing security protocols based on DNS.
Details
| Original language | English |
|---|---|
| Number of pages | 9 |
| Journal | IEEE Security & Privacy |
| Publication status | E-pub ahead of print - 12 Feb 2025 |
| Peer-reviewed | Yes |
External IDs
| unpaywall | 10.1109/msec.2025.3531232 |
|---|---|
| Mendeley | 61fc8ff8-e648-382d-a9cc-29b3c456aed6 |
| ORCID | /0000-0002-3825-2807/work/179394058 |