SecurityWorldMarket

12/01/2025

Industry first DCV library improves certificate issuance challenges

Lehi, Ut

Digicert has released its open-source Domain Control Validation (DCV) library, building on its contributions to the PKI community. The release of the new library is designed to strengthen the domain validation process and reduce errors in certificate issuance. This latest release joins Pkilint, another open-source tool from Digicert designed to ensure certificates are accurate and comply with standards.

The DCV process is critical for ensuring that only the proven owner of a domain can be issued a certificate for it. Until now, many CAs have had to develop their own proprietary code to meet compliance requirements—a task that can be resource-intensive and inconsistent. Digicert’s open-source library solves this problem by providing a pre-vetted, standards-compliant solution that raises the bar for industry transparency and security.

“This library reflects our commitment to advancing the security and reliability of the internet,” said Deepika Chauhan, Chief Product Officer at DigiCert. “By open-sourcing our DCV library, we’re not only sharing the tools we’ve refined over years of experience, but we’re also fostering trust and collaboration across the Web PKI community. We believe making this library available to everyone will set a new standard for transparency and compliance, ultimately benefiting the entire digital trust community.”

The Open-Source DCV Library offers a variety of benefits such as compliant DCV practices, enhanced transparency and community-driven hardening.

Industry first

Accoding to the company, the release of Digicert’s DCV library is an industry first for the certificate authority ecosystem. While open-source PKI solutions are not new, no organisation has specifically open-sourced a dedicated DCV library until now. This initiative addresses two critical challenges:

  • Accessible, scalable implementation: The library provides developers with an open, transparent, and scalable solution for domain control validation. Many certificate authorities lack the resources to develop and maintain a robust, field-tested implementation of this critical digital trust process, making the library an invaluable option.
  • Enhanced security through community scrutiny: As the first open-source DCV implementation, the library invites widespread industry scrutiny, enabling vulnerabilities and other bugs to be identified and addressed more quickly. Closed-source implementations often leave risks undetected for years due to limited testing resources. By fostering collaboration and accountability, this initiative strengthens digital trust across the ecosystem, incentivising CAs and developers to ensure the library meets the highest standards of quality and security.

Tags


Product Suppliers
Back to top