0Cert

0Cert replaces traditional SSL certificate authorities with Certificateless Public Key Cryptography (CL-PKC). Instead of trusting one of 150 certificate authorities, your domain name IS your cryptographic identity.

This plugin adds 0Cert protection to any WordPress site in minutes — no server configuration required.

What it does:

• Adds X-0Cert-* verification headers to all pages
• Serves the /.well-known/0cert endpoint that 0 Browser checks automatically
• Verifies your keys against the Key Generation Center (KGC) on setup
• Shows your 0Cert status in the WordPress admin

What visitors see:

Users of 0 Browser (iOS) see a green 0Cert Verified badge when visiting your site instead of the standard SSL lock icon. Your site’s identity is cryptographically bound to your domain — not just promised by a certificate authority.

How it works:

1. You register your domain at app.0cert.io or in the 0 Browser iOS app
2. A Key Generation Center issues a partial key for your domain
3. You generate your own user secret locally (never shared with anyone)
4. The two combine into a full private key — even the KGC cannot decrypt your traffic
5. Install this plugin, paste your keys, save — done

Zero configuration required:

• No server-level changes needed
• No DNS certificate records to manage
• No annual renewals
• Works on any WordPress hosting

Open source:

The full protocol, KGC server, iOS browser, and this plugin are all open source at github.com/0cert.