Folks here will probably be interested in this paper recently presented at HotPETS: Using BGP to Acquire Bogus TLS Certificates . Essentially, BGP hijacking can be used to fool most domain validation processes, allowing an attacker to issue a certificate for a domain they don’t control, using nearly …

Using BGP to Acquire Bogus TLS Certificates

cpu August 25, 2017, 6:03pm 10

As an update, we just announced the deployment of this feature to the staging environment.

Topic		Replies	Views
Attack on domain verification with BGP hijacking Issuance Tech	12	9010	August 19, 2017
This morning's hijack of certain AWS Route53 IPs to hijack MyEtherWallet.com Issuance Tech	4	1139	May 25, 2018
What prevents a state actor with access to your IP from issuing false LetsEncrypt certificates? Issuance Tech	36	313	September 12, 2024
Understanding and Preventing Border Gateway Protocol (BGP) Attacks Praise	2	1025	June 30, 2018
GoDaddy DNS breach Issuance Policy	1	1018	February 22, 2019