Title: 0Cert
Author: Dimitrii Ulianov
Published: <strong>2026年6月21日</strong>
Last modified: 2026年6月21日

---

搜尋外掛

![](https://ps.w.org/0cert/assets/icon-256x256.png?rev=3580950)

# 0Cert

 由[Dimitrii Ulianov](https://profiles.wordpress.org/dimaulianov/)

[下載](https://downloads.wordpress.org/plugin/0cert.zip)

 * [詳情](https://zh-hk.wordpress.org/plugins/0cert/#description)
 * [評價](https://zh-hk.wordpress.org/plugins/0cert/#reviews)
 *  [安裝](https://zh-hk.wordpress.org/plugins/0cert/#installation)
 * [開發](https://zh-hk.wordpress.org/plugins/0cert/#developers)

 [支援](https://wordpress.org/support/plugin/0cert/)

## 描述

0Cert replaces traditional SSL certificate authorities with Certificateless Public
Key Cryptography (CL-PKC). Instead of trusting one of 150 certificate authorities,
your domain name IS your cryptographic identity.

This plugin adds 0Cert protection to any WordPress site in minutes — no server configuration
required.

**What it does:**

 * Adds `X-0Cert-*` verification headers to all pages
 * Serves the `/.well-known/0cert` endpoint that 0 Browser checks automatically
 * Verifies your keys against the Key Generation Center (KGC) on setup
 * Shows your 0Cert status in the WordPress admin

**What visitors see:**

Users of 0 Browser (iOS) see a green **0Cert Verified** badge when visiting your
site instead of the standard SSL lock icon. Your site’s identity is cryptographically
bound to your domain — not just promised by a certificate authority.

**How it works:**

 1. You register your domain at [app.0cert.io](https://app.0cert.io) or in the 0 Browser
    iOS app
 2. A Key Generation Center issues a partial key for your domain
 3. You generate your own user secret locally (never shared with anyone)
 4. The two combine into a full private key — even the KGC cannot decrypt your traffic
 5. Install this plugin, paste your keys, save — done

**Zero configuration required:**

 * No server-level changes needed
 * No DNS certificate records to manage
 * No annual renewals
 * Works on any WordPress hosting

**Open source:**

The full protocol, KGC server, iOS browser, and this plugin are all open source 
at [github.com/0cert](https://github.com/0cert).

## 螢幕截圖

[⌊Settings page — enter your keys and verify with the KGC⌉⌊Settings page — enter
your keys and verify with the KGC⌉[

Settings page — enter your keys and verify with the KGC

## 安裝

 1. Upload the `0cert` folder to `/wp-content/plugins/`
 2. Activate the plugin through the Plugins menu in WordPress
 3. Go to **Settings -> 0Cert**
 4. Get your keys from [app.0cert.io](https://app.0cert.io) or the 0 Browser iOS app
 5. Paste your Full Private Key and User Secret, click **Save and Verify**
 6. Add a DNS TXT record: `TXT @ ibc-kgc=https://kgc.0cert.io`

## 常見問題

### Do I need to change anything on my server?

No. The plugin handles everything through WordPress hooks — no .htaccess changes,
no server configuration, no root access required.

### What are the Full Private Key and User Secret?

These are generated when you register your domain at app.0cert.io or in the 0 Browser
iOS app. They are cryptographic keys unique to your domain. The User Secret never
leaves your device during generation — even the KGC never sees it. Store them securely.

### Can the KGC decrypt my traffic?

No. This is a structural property of the CL-PKC protocol. The KGC only issues a 
partial key. Your full private key is assembled by combining the partial key with
your locally generated user secret. Without your user secret, nobody — including
the KGC — can reconstruct your full key.

### What if I want to run my own KGC?

You can self-host the KGC server — see [github.com/0cert/kgc-server](https://github.com/0cert/kgc-server).
Enter your KGC URL in the plugin settings under KGC Server.

### Does this replace SSL/HTTPS?

No — 0Cert runs alongside standard SSL. HTTPS handles transport encryption as normal.
0Cert adds identity verification on top, so that 0 Browser users can see your site’s
identity is cryptographically bound to your domain rather than vouched for by a 
certificate authority.

### Will this slow down my site?

No. The KGC verification only happens when you save your settings, not on every 
page load. The headers and verification endpoint add negligible overhead.

## 評價

There are no reviews for this plugin.

## 貢獻者及開發者

“0Cert” 是一個開源的軟體。以下的人對這個外掛作出了貢獻。

貢獻者

 *   [ Dimitrii Ulianov ](https://profiles.wordpress.org/dimaulianov/)

[將 0Cert 外掛本地化為台灣繁體中文版。](https://translate.wordpress.org/projects/wp-plugins/0cert)

### 對開發相關資訊感興趣？

任何人均可[瀏覽程式碼](https://plugins.trac.wordpress.org/browser/0cert/)、查看 
[SVN 存放庫](https://plugins.svn.wordpress.org/0cert/)，或透過 [RSS](https://plugins.trac.wordpress.org/log/0cert/?limit=100&mode=stop_on_copy&format=rss)
訂閱[開發記錄](https://plugins.trac.wordpress.org/log/0cert/)。

## 修改日誌

#### 1.0.0

 * Initial release
 * KGC verification on settings save
 * X-0Cert-* headers on all responses
 * /.well-known/0cert verification endpoint
 * WordPress admin settings page with status indicator

## 其它

 *  Version **1.0.0**
 *  Last updated **2 週之前**
 *  Active installations **少於10**
 *  WordPress version ** 5.0 or higher **
 *  Tested up to **7.0**
 *  PHP version ** 7.4 or higher **
 *  Language
 * [English (US)](https://wordpress.org/plugins/0cert/)
 * Tags
 * [certificate](https://zh-hk.wordpress.org/plugins/tags/certificate/)[encryption](https://zh-hk.wordpress.org/plugins/tags/encryption/)
   [identity](https://zh-hk.wordpress.org/plugins/tags/identity/)[security](https://zh-hk.wordpress.org/plugins/tags/security/)
   [ssl](https://zh-hk.wordpress.org/plugins/tags/ssl/)
 *  [進階顯示](https://zh-hk.wordpress.org/plugins/0cert/advanced/)

## 評分

No reviews have been submitted yet.

[Your review](https://wordpress.org/support/plugin/0cert/reviews/#new-post)

[See all reviews](https://wordpress.org/support/plugin/0cert/reviews/)

## 貢獻者

 *   [ Dimitrii Ulianov ](https://profiles.wordpress.org/dimaulianov/)

## 支援

有話想說？需要協助？

 [檢視支援論壇](https://wordpress.org/support/plugin/0cert/)