Blog

SSL Digital Certificate Authority - Encryption & Authentication

  • No more unnecessary password changes for Certificate Authorities

    No more unnecessary password changes for Certificate Authorities

    After over a year of effort, Ballot SC3 was just unanimously passed by the CA/Browser Forum. This is the first major upgrade to the Network and Certificate System Security Requirements to come out...

    Read
  • Global Partner Series: SSL247 Gives Customers End-to-End Security Consulting – 24 hours a day, 7 days a week

    Global Partner Series: SSL247 Gives Customers End-to-End Security Consulting – 24 hours a day, 7 days a week

    “There are some things AI just can’t solve. When it comes to SSL, having real person at the other end of the phone is one of those things. SSL247 provides this human connection for its customers,...

    Read
  • New CAB Forum Validation Rules Go Into Effect Today

    New CAB Forum Validation Rules Go Into Effect Today

    As of August 1, 2018, Certificate Authorities (CAs) are not allowed to use Methods #1 and #5 from section 3.2.2.4 of the Baseline Requirements to validate domain ownership when issuing publicly...

    Read
  • Strengthening Trust & Identity in Blockchain Technology

    Strengthening Trust & Identity in Blockchain Technology

    Today, we are announcing our becoming a member of The Linux Foundation and a contributor to the open source project, Hyperledger. According to The Linux Foundation, “Hyperledger is an open source...

    Read
  • Seeing a “Not Secure” Warning in Chrome? Here’s Why and What to Do about It

    Seeing a “Not Secure” Warning in Chrome? Here’s Why and What to Do about It

    The latest version of the Google Chrome browser, version 68, introduced a new “Not Secure” warning in the address bar that appears anytime you are visiting an insecure web page. The warning refers...

    Read
  • Notice of Withdrawal from the CA Security Council

    Notice of Withdrawal from the CA Security Council

    DigiCert is electing to withdraw from the CA Security Council (CASC) as we believe CASC is moving in a direction that DigiCert does not support. Specifically: We feel that CASC is not sufficiently...

    Read
  • Assessing the London Protocol

    Assessing the London Protocol

    The London Protocol was originally proposed as a potential joint effort by CA Security Council members to combat phishing. All large commercial CAs revoke certificates for phishing websites when...

    Read
  • Our Latest Symantec Distrust Guidance

    Our Latest Symantec Distrust Guidance

    This week, Apple announced they will be distrusting SSL/TLS certificates issued from Symantec’s legacy root certificates, which includes the Thawte, GeoTrust, and RapidSSL brands. We have  given...

    Read
  • EV Certificates & DigiCert

    EV Certificates & DigiCert

    By Jeremy Rowley and Tim Hollebeek The Certificate Authority/Browser (CA/Browser) community discussions on the value of Extended Validation (EV) certificates, the future of EV, and proposed...

    Read
  • Apple Announces Certificate Transparency Requirement

    Apple Announces Certificate Transparency Requirement

    Following their 2018 WWDC conference, Apple announced they will begin requiring Certificate Transparency (CT) for all SSL/TLS certificates issued after October 15, 2018. Certificate Transparency...

    Read
  • Keeping Track of Changes in Chrome for HTTPS & HTTP Indicators

    Keeping Track of Changes in Chrome for HTTPS & HTTP Indicators

    If you are a regular user of Chrome or work in web development/IT, you’ve likely noticed frequent changes to the browser’s ‘security UI’—the icons and indicators that tell users if the page they...

    Read
  • Meeting the General Data Protection Regulation (GDPR)

    Meeting the General Data Protection Regulation (GDPR)

    At the end of this week, strong new legislation takes effect in the European Union to give greater protection to European consumers and their data. This collection of laws, known as the General...

    Read
  • Guidance for the EFAIL S/MIME Vulnerability

    Guidance for the EFAIL S/MIME Vulnerability

    Today, a group of security researchers from Germany and Belgium published a vulnerability affecting two email encryption systems: S/MIME and OpenPGP. Dubbed “EFAIL,” this vulnerability has...

    Read
  • Scaling CT Logs: Temporal Sharding

    Scaling CT Logs: Temporal Sharding

    Our industry is moving toward universal support for Certificate Transparency (CT), one of the largest improvements to trust and security for the Web PKI system and SSL certificates in years. Later...

    Read
  • Official List of Trusted Root Certificates on Android

    Official List of Trusted Root Certificates on Android

    Similar to other platforms like Windows and macOS, Android maintains a system root store that is used to determine if a certificate issued by a particular Certificate Authority (CA) is trusted. As...

    Read
  • Getting Ahead of Chrome 70 Distrust of Symantec-Issued Certificates

    Getting Ahead of Chrome 70 Distrust of Symantec-Issued Certificates

    Today marks the planned release of Google Chrome 66 stable version and the culmination of the first major distrust event for Symantec root certificates in the world’s most used web browser. With...

    Read
  • Android P Will Default to HTTPS Connections for All Apps

    Android P Will Default to HTTPS Connections for All Apps

    The next version of Android will default to blocking HTTP traffic in apps by default. In a blog post, Dave Burke, Android’s VP of Engineering said this is the latest step in a “larger effort to...

    Read
  • How to Secure Internet-Connected Devices in the Hospitality Industry

    How to Secure Internet-Connected Devices in the Hospitality Industry

    In mid-February, I participated on a panel focused on securing Internet of Things (IoT) devices in the hospitality industry. This event was sponsored by CLM (Claims and Litigation Management)....

    Read
  • Safari Warns about Unsecure Logins

    Safari Warns about Unsecure Logins

    The latest version of Apple’s browser, Safari 11.1, was released yesterday for iOS and macOS. The new update brings a warning for websites that offer login forms over unencrypted HTTP, which has...

    Read
  • 21 Online Scams You May Not Know About [Infographic]

    21 Online Scams You May Not Know About [Infographic]

    With new technology comes more risk for exploitation. Take a journey through time, learn about 21 online scams, and make sure you’re not next on a scammers list with this infographic.   Share the...

    Read
  • loading
    Loading More...