▾ G11 Media Network: | ChannelCity | ImpresaCity | SecurityOpenLab | Italian Channel Awards | Italian Project Awards | Italian Security Awards | ...
InnovationOpenLab

Sectigo Leads Open MPIC Project to Bolster Certificate Security Against BGP Threats

Sectigo, a global leader in digital certificates and automated Certificate Lifecycle Management (CLM), in collaboration with researchers at Princeton University, today announced its pivotal role in th...

Business Wire

As the CA/Browser Forum Strengthens Validation Rules, Sectigo Reinforces Its Leadership in Digital Trust with Open-Source Innovation and Industry Collaboration

SCOTTSDALE, Ariz.: Sectigo, a global leader in digital certificates and automated Certificate Lifecycle Management (CLM), in collaboration with researchers at Princeton University, today announced its pivotal role in the Open MPIC (Multi-Perspective Issuance Corroboration) Project. Sectigo’s Principal Architect, Dmitry Sharkov, serves as the project’s lead architect in developing an open-source tool that helps Certificate Authorities (CAs) comply with new CA/Browser Forum requirements aimed at enhancing the security of digital certificate issuance against Border Gateway Protocol (BGP) attacks.

Before issuing a certificate to a website, a CA must verify that the requester legitimately controls the domain listed in the certificate. Although current Domain Control Validation (DCV) methods are in place, research has shown that BGP attacks can still enable fraudulent certificate issuance. Meanwhile, the U.S. government has raised concerns about broader security threats stemming from BGP vulnerabilities. Open MPIC addresses this risk by providing open-source tools that enable CAs to perform DCV from multiple, geographically diverse vantage points, making it significantly harder for routing attacks to lead to misissuance.

“The Open MPIC project marks a critical step forward in addressing the growing risks of certificate misissuance due to BGP vulnerabilities,” said Kevin Weiss, chief executive officer at Sectigo. “As threats to the WebPKI evolve, Sectigo is committed to driving open-source innovation that strengthens the integrity of the internet. We’re particularly proud of Dmitry Sharkov’s leadership in advancing Open MPIC, fostering critical industry collaboration to help prevent certificate misissuance and strengthen the entire WebPKI ecosystem.”

Following timelines imposed by the CA/Browser Forum, CAs must adhere to these phased MPIC requirements:

  • September 15, 2025: CAs must validate from at least two remote perspectives.
  • March 15, 2026: CAs must validate from at least three remote perspectives.
  • June 15, 2026: CAs must validate from at least four remote perspectives.
  • December 15, 2026: CAs must validate from at least five remote perspectives.

As Lead Architect, Sectigo’s Sharkov is working in collaboration with co-founders Henry Birge-Lee and Grace Cimaszewski from Princeton University to develop and maintain the project's core library, API specifications, and deployment solutions: “It’s an honor to contribute to a project like Open MPIC that brings the PKI industry together to tackle real-world security challenges,” said Sharkov. “I’m grateful to collaborate with such talented peers, and I hope our work helps the Certificate Authority community move forward with greater trust and resilience.”

Open MPIC joins other key contributions to the WebPKI from Sectigo such as pkimetal and crt.sh. Holding a record five chair positions in the CA/Browser Forum and leading the way amongst all organizations in contributing to essential WebPKI infrastructure and services, Sectigo is committed to advancing the security and reliability of the world’s public certificates. Sectigo continues to define the future of digital trust by driving technological innovation, strengthening WebPKI, and ensuring the highest security standards.

Learn more about Open MPIC at the following:

About Sectigo

Sectigo is the most innovative provider of certificate lifecycle management (CLM), delivering comprehensive solutions that secure human and machine identities for the world's largest brands. Sectigo’s automated, cloud-native CLM platform issues and manages digital certificates across all certificate authorities (CAs) to simplify and improve security protocols within the enterprise. Sectigo is one of the largest, longest standing, and most reputable CAs with more than 700,000 customers, six combined active seats in the CA/Browser Forum and ETSI, and two decades of delivering unparalleled digital trust. For more information, visit www.sectigo.com or follow us on LinkedIn.

Fonte: Business Wire

If you liked this article and want to stay up to date with news from InnovationOpenLab.com subscribe to ours Free newsletter.

Related news

Last News

RSA at Cybertech Europe 2024

Alaa Abdul Nabi, Vice President, Sales International at RSA presents the innovations the vendor brings to Cybertech as part of a passwordless vision for…

Italian Security Awards 2024: G11 Media honours the best of Italian cybersecurity

G11 Media's SecurityOpenLab magazine rewards excellence in cybersecurity: the best vendors based on user votes

How Austria is making its AI ecosystem grow

Always keeping an European perspective, Austria has developed a thriving AI ecosystem that now can attract talents and companies from other countries

Sparkle and Telsy test Quantum Key Distribution in practice

Successfully completing a Proof of Concept implementation in Athens, the two Italian companies prove that QKD can be easily implemented also in pre-existing…

Most read

Securonix Acquires ThreatQuotient to Deliver Industry’s Broadest and Deepest…

Today, Securonix, a five-time Leader in the Gartner® Magic Quadrant™ for Security Information and Event Management (SIEM), announced the acquisition of…

Confidential Computing Poised for Explosive Growth as Anjuna Secures Three…

Anjuna, a leader in Confidential Computing and AI Data Fusion Clean Rooms, today announced the addition of a new top five global bank to its growing roster…

PubNub Evolves Its Platform with AI-Native Development, Real-Time Moderation,…

PubNub, the leader in real-time interactive apps, unveiled the next evolution of its platform. It introduces AI-native development, real-time decision…

Glean Raises $150M Series F at $7.2B Valuation to Accelerate Enterprise…

Work AI leader Glean today announced it raised $150 million in Series F financing, bringing its valuation to $7.2 billion. The round was led by Wellington…

Newsletter signup

Join our mailing list to get weekly updates delivered to your inbox.

Sign me up!