RE: Will tomorrow mark the beginning of the end for EV certificates?

avatar

You are viewing a single comment's thread:

Has anyone found that blockchain could actually solve this ridiculous monopoly of SSL certs? or am I just being bully our here?

I mean... it has ALL it needs to implement what we have currently as CA's! At least...

Then the derived structure is just a matter of scale... Need to put this to my blockchain homework...

Would love to see this implemented... I am sick of creating SSL certs...

security cybersecurity technology encryption stem palnet news
0
0
0.000
3 comments
avatar

You are right. Blockchain can certainly be used to replace most if not all of the functions a CA perform. For instance, the CRL and OCSP can be ported to a public blockchain, open for browsers to query.

The main "value" CA brings is that they do the work of verifying the ownership of the domain. That portion can technically be automated as well through using DNS TXT record verification method. With that automated, it can be verified in a decentralized manner.

Will be nice to see someone embark on this project. Perhaps "Let's Encrypt" will be the most likely candidate for such implementation

0
0
0.000
Reply
avatar

Please do remember me if you find something like this... I would be the kind of guy to launch something like this =)

0
0
0.000
Reply
avatar

I think the EV certificate is not an effective way to improve trust and promote secure user's behavior in the first place.

Yep! maybe Mozilla (DoH) could be even more effective to improve trust, protect user privacy and promote secure user's behavior among many other things. Yeah! screw CAs!! ;)

0
0
0.000
Reply