The Sovereign Keys Project

EFF's Sovereign Keys project aims to make the encrypted Internet more reliable and secure. It is a proposal to fix structural insecurities in the way that the Web, Email and other Internet protocols currently establish encrypted connections.

If deployed, Sovereign Keys will protect HTTPS and other uses of TLS/SSL against a wide variety of attacks, including attacks involving Certificate Authorities and domain validation, and attacks that involve downgrading or blocking encrypted connections. It operates by providing an optional and very secure way of associating domain names with public keys, augmenting other methods of publishing TLS/SSL keys, such as the existing system of Certificate Authorities or proposals to publish keys via DNSSEC.

You can read a high level overview or look at the detailed design document and list of issues that we're tracking in relation to the design. There is also a public mailing list for discussion of the design.

Related Issues

Stay in Touch

NSA Spying

EFF is leading the fight against the NSA's illegal mass surveillance program. Learn more about what the program is, how it works, and what you can do.

Follow EFF

A deep dive into XKEYSCORE, one of the NSA's creepiest spying tools: https://eff.org/r.c6hp

Jul 3 @ 3:12pm

Come to EFF HQ on July 8 for a book talk with author of "Geek Heresy: Rescuing Social Change from the Cult of Tech" https://eff.org/r.i3fv

Jul 2 @ 4:57pm

EFF is turning 25! Here's the who, what, when, where, how, and—maybe most importantly—why of our celebration: https://eff.org/r.6dov

Jul 2 @ 4:51pm
JavaScript license information