Pouyan Fotouhi Tehrani, Raphael Hiesgen, Thomas C. Schmidt, Matthias Wählisch,
A Call to Reconsider Certification Authority Authorization (CAA),
IEEE Security & Privacy, 2025.
Abstract: Certification Authority Authentication (CAA) is a safeguard against illegitimate certificate issuance. We show how shortcomings in CAA concepts and operational aspects undermine its effectiveness in preventing certificate misissuance. Our discussion reveals pitfalls and highlights best practices when designing security protocols based on DNS.
Note: accepted for publication
Topics: Network Security | Internet Measurements and Analysis | Network Management
This page generated by bibTOhtml on Fr 18. Jul 00:05:06 CEST 2025