Certificate authorities have a single point of failure in signing the digital certificates – what if their signing key gets stolen? This is possible if the signing key is stored on a single machine. Instead, we propose secret sharing of signing keys across multiple machines such that the certificate authorites can combine the secret shares within the multi-party computation protocol and sign the digital certificate in an encrypted way.
Decentralized Certificate Authorities
We use MPC to allow certificate authorities to sign digital certificates in a secure and distributed way.