TLSA Validator: Secure DNSSEC & TLS/SSL Certificate Check
Extension stats
Extension summary
TLSA Validator allows you to check the existence and validity of DNSSEC signed DNS records for domains. If a valid DNSSEC chain to the domain is found it will also check for the existence of TLSA records. TLSA records can store hashes of remote server TLS/SSL certificates. The authenticity of a TLS/SSL certificate for a domain name is verified by DANE protocol (RFC 6698). DNSSEC and TLSA validation results are displayer by using several icons. Additional explanatory texts are shown in the page’s address bar. Clicking on a given icon symbol reveals more detailed security information.
IMPORTANT! This add-on communicates with an external binary application through the native messaging interface. The binary application is required for correct working of the add-on. The binary can be downloaded from www.dnssec-validator.cz/pages/download.html#package. Keep in mind that the version of the binary and of the extension must match.
User reviews
- Helpful security plugin
- Simple verification of DNSSEC and TLSA entries
- Easy to see if a site can be trusted
- Works perfectly with latest Chrome/Chromium
- Installation of supporting binary is simple
- Stopped working in latest Chrome
- Not widely supported by hosting companies and DNS registrars
- Outdated functionality
- TLSA requires manual setup which is complex for most users
- Stopped working or out of date
- Helpful security plugin
- DNSSEC works great but TLSA is not widely adopted
User reviews
Extension safety
Risk impact
TLSA Validator requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.
Risk likelihood
TLSA Validator has earned a fairly good reputation and likely can be trusted.
Promo images
Similar extensions
Here are some Chrome extensions that are similar to TLSA Validator: