Image for post
Image for post

DNS Made Easy announces the addition of CAA records, which work with certification authorities to improve the security of domains.

“Any client using SSL certificates to secure their domain is advised to configure CAA records to safeguard their security,” says President of DNS Made Easy Steven Job. “In the past, HTTPS secured domains have been compromised due to certification misuse. CAA records have the ability to prevent this at the time of certification issuance.”

CAA records seek to solve this issue by declaring the domain owner’s preferred CA, eliminating the risk of false CAs from issuing fake certificates. CAA records must be created before application for certificates is made. CAA records can be customized to specify wild card domains and receive emails when CAs find certificate policy violations.

Websites that are looking to use HTTPS, but have not configured CAA records are putting themselves and their clients at risk. In the past, malicious parties were able to distribute malware, intercept secure traffic, and sell illegitimate certificates because websites weren’t able to declare their preferred CA. CAA records prevent this from happening because domain administrators can specify the exact CA that is authoritative for issuing their domain’s certificates.

Domain security has growing implications according to news from Google that is now considering HTTPS is a ranking signal. Domain administrators need to switch to HTTPS because in the near future Google will consider HTTP domains as insecure and penalize them in search results. Domain owners that make the switch to HTTPS should also add the appropriate CAA record(s) to ensure security.

Full documentation for DNS Made Easy configuration of CAA records can be found on their help site.

About DNS Made Easy

DNS Made Easy is a subsidiary of Tiggee, and is a world leader in providing global IP Anycast enterprise DNS services. DNS Made Easy implemented the industry’s first triple independent Anycast cloud architecture for maximum DNS speed and DNS redundancy. Originally launched in 2002, DNS Made Easy’s services have grown to manage hundreds of thousands of customer domains receiving more than 30 billion queries per day. Today, DNS Made Easy builds on a proud history of uptime and is the preferred DNS hosting choice for most major brands, especially companies that compare price and performance of enterprise IP Anycast alternatives.

Originally published at DNS Made Easy News.

Learn more about the Domain Name System (it’s not as hard as you may think), we post new blogs and educational infographics every week.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store