Let’s Encrypt is an automated certification authority supported by Mozilla Firefox and Google Chrome. Today, the agency announced a new measure to further protect users from cyberattacks. This new feature, called multi-angle domain authentication, helps certification authorities (CAs) demonstrate that applicants have control over the domain they want to obtain.
Domain authentication is not a new issue, but there are many vulnerabilities in the authentication process, which means that cyber attackers can trick CA authorities into issuing certificates incorrectly. Through multi-angle domain authentication, cyber attackers need to destroy three different network paths at the same time, which not only greatly improves the security factor, but also allows for faster detection of cyber attacks in the Internet topology community.
In the press release, Let’s Encrypt specifically thanked several Princeton University researchers for their help in multi-angle domain validation and said it would continue to work with researchers to improve the effectiveness of design and implementation.