security
What Is a DNS CAA Record and How to Use It to Enhance SSL Certificate Security
DNS CAA (Certification Authority Authorization) records let domain owners specify which certificate authorities (CAs) are allowed to issue SSL/TLS certificates for their domain. By adding a CAA record, you reduce the risk of rogue or unauthorized certificate issuance, closing a common vector for man-in-the-middle attacks. This article explains how CAA records work, how to set them up, and how tools like a DNS analyzer can help you verify your configuration.
14 views
