Wild Card Certificates

Wild Card Certificates

Wild Card Certificates allows servers with different URLs, but the same origin to use the same security certificates.

Context

Web servers use digital certificates to establish a connection between the server and the user's computer also called the client computer, that is secure against a variety of attacks by malicious actors with a variety of motives.

Problems

• Acquiring and maintaining certificates and secured servers is an expensive and time consuming process. It is not their to gain customers but to protect the providers from losses of both money and customers.
• Mixed security sites allows both HTTP (unsecured) and HTTPS (secured) connections for a variety of good reasons including redirection of all traffic to a secured connection.

References

• Avoid Dangers of Wildcard TLS Certificates and the ALPACA Technique