Google calls for halting use of WHOIS for TLS domain verifications

Certificate authorities and browser makers are planning to end the use of WHOIS data verifying domain ownership following a report that demonstrated how threat actors could abuse the process to obtain fraudulently issued TLS certificates. TLS certificates are the cryptographic credentials that underpin HTTPS connections, a critical component of online communications verifying that a server belongs to a trusted entity and encrypts all traffic passing between it and an end user.

Source: Technology Lab – Ars Technica

 


Date:

Categorie(s):

Tag(s):