CA also issues SSL certificates, which bind the ownership of a website to a set of publicly verifiable cryptographic keys. However, with the growing threat of state-level attacks, this centralized repository of certificates could pose a counterparty risk for users in the future. Attacks are on the rise with over 267 million phishing URLs being sent in 2017. Moreover, Zscalar published a Cloud Security Report which reported blocking over 1.7 billion advanced threats hidden in SSL traffic in 2018 alone.
Now we’re 30 plus years into the web, and we are in need of a modern, robust solution, that would mitigate suck attacks while reducing the reliance of third-party intermediaries (CAs).