Communications of the ACM
U. Michigan Fronts Effort to Push Https Net Security
Researchers at the University of Michigan are working with a variety of Internet services firms, as well as IdenTrust and the Electronic Frontier Foundation, on a project to provide free, automated, open, ubiquitous website HTTPS Transport Layer Security
Credit: Government Computer News
A University of Michigan (UM) research team is shepherding a project to provide free, automated, open, and ubiquitous website HTTPS Transport Layer Security encryption in partnership with several Internet services firms, including Mozilla, Cisco Systems, and Akamai, along with IdenTrust and the Electronic Frontier Foundation (EFF).
"This project should boost everyday data protection for almost everyone who uses the Internet," says EFF's Peter Eckersley.
The new Let's Encrypt certificate authority is slated to roll out next summer as part of an initiative to improve Internet security. "Anything you do on the Web is visible to network-based attackers if you're using regular HTTP," notes UM professor J. Alex Halderman, who started Let's Encrypt. "But HTTPS is a fundamental protection against these attacks, and what we're doing with Let's Encrypt is trying to make HTTPS ubiquitous."
Let's Encrypt intends to eliminate the high expense of HTTPS deployments by providing free secure server certificates and automating the process of acquiring and managing them. The Internet Security Research Group will oversee the new certificate authority, and among the new technologies to be used in Let's Encrypt will be the ACME automated certificate management protocol, which automates the management of domain-validation certificates to support new and stronger forms of validation.
From Government Computer News
View Full Article
Abstracts Copyright © 2014 Information Inc., Bethesda, Maryland, USA
No entries found