DigiCert releases open-source DCV library

Digicert

DigiCert has announced the release of its open-source Domain Control Validation (DCV) library.

The release of the new library is designed to strengthen the domain validation process and reduce errors in certificate issuance. This latest release joins pkilint, another open-source tool from DigiCert that ensures certificates are accurate and comply with standards. 

The DCV process is critical for ensuring that only the proven owner of a domain can be issued a certificate for it. Until now, many CAs have had to develop their own proprietary code to meet compliance requirements—a task that can be resource-intensive and inconsistent.

DigiCert believes their open-source library solves this problem by providing what they say is a pre-vetted, standards-compliant solution that raises the bar for industry transparency and security. 

“This library reflects our commitment to advancing the security and reliability of the internet,” said Deepika Chauhan, Chief Product Officer at DigiCert. “By open-sourcing our DCV library, we’re not only sharing the tools we’ve refined over years of experience, but we’re also fostering trust and collaboration across the Web PKI community. We believe making this library available to everyone will set a new standard for transparency and compliance, ultimately benefiting the entire digital trust community.”

Key Benefits of the Open-Source DCV Library, as per DigiCert:

  • Compliant DCV Practices: Offers CAs a robust, pre-built solution for performing domain control validation in alignment with industry standards, eliminating the need to create and maintain proprietary code.
  • Enhanced Transparency: Open access allows the global community to review, test, and validate the code, fostering trust and collaboration.
  • Community-Driven Hardening: Public scrutiny will identify and mitigate vulnerabilities, further strengthening the library’s security and efficiency for DigiCert and other users.

DigiCert believes that the release of their DCV library is an industry first for the certificate authority ecosystem. While open-source PKI solutions are not new, no organisation has specifically open-sourced a dedicated DCV library until now. This initiative addresses two critical challenges:

  1. Accessible, Scalable Implementation: The library provides developers with an open, transparent, and scalable solution for domain control validation. Many certificate authorities lack the resources to develop and maintain a robust, field-tested implementation of this critical digital trust process, making the library an invaluable option. 
  1. Enhanced Security Through Community Scrutiny: As the first open-source DCV implementation, the library invites widespread industry scrutiny, enabling vulnerabilities and other bugs to be identified and addressed more quickly. Closed-source implementations often leave risks undetected for years due to limited testing resources. By fostering collaboration and accountability, this initiative strengthens digital trust across the ecosystem, incentivising CAs and developers to ensure the library meets the highest standards of quality and security.  

Download today

CAs and developers can strengthen their compliance and security standards by downloading and testing DigiCert’s DCV library today: 

For more information, visit DigiCert Insights and read the blog.

To read more DigiCert news, click here.

Share
Tweet
Post

Related posts

Scroll to Top