A new report from the World Wide Web Consortium (W3C), which is a group of internet companies and standards bodies that is tasked with developing standards to make the web more secure, shows that most websites are not secure and vulnerable to cyber attacks, and that there is an increasing trend of sites relying on insecure SSL certificates to protect users’ data.
In the report, released on Friday, W3C recommends that users and web developers encrypt their sites with at least one of the following security protocols:The report also suggests that developers of secure web applications and websites should use certificates that are signed by a third-party service provider that provides the certificate authority and authentication.
The report recommends that browsers install the certificates to ensure that sites are not compromised by malware and to prevent the certificate from being misused.
This is not the first time that the W3F has advocated for stronger security on the web.
In 2016, the organization released a report that recommended that websites should implement SSL/TLS encryption, in addition to TLS 1.2 and other security features.
The W3CF is also an organization that supports and encourages standards-based certification for all web applications.
The group, which has also been vocal in its criticism of the current system of certificate validation, has said that it believes the current certificate verification system is insufficient and that a more robust system of standards for certificate verification would be a better solution.
In a statement to The Daily Dot, W1GC Vice President, Security, Patrick L. Glynn said, “We are pleased that W3Cs report supports our recommendation that web applications use secure certificates for certificates issued by a trusted certificate authority.
The report also calls for an increase in web application security.
W1C has previously supported the use of certificate revocation lists and other techniques that would help ensure that web application certificates are not tampered with or stolen.””
The W1 GC is committed to helping secure the web and its users, and we hope the W1CC will take this advice seriously as well,” Glynn added.