Back
Secure, update, monitor and control connected devices at scale
- Digital Trust for:
- Enterprise IT, PKI & Identity
- Websites & Servers
- Code & Software
- Documents & Signing
- IoT & Connected Devices
Manage PKI and Certificate risk in one place now
Manage PKI and Certificate risk in one place now
The smarter way to manage certificate lifecycles
Continuous Signing for CI/CD & DevOps
Secure, flexible and global signing
Trusted from silicon to in-the-field
Device security without compromise
Accelerate secure app development
2022 Edition of the TLS/SSL Best Practices Guide
2022 Edition of the TLS/SSL Best Practices Guide
How to establish a signing policy DevOps will actually adopt
Get a global perspective on managing document signing and regulations
Secure, update, monitor and control connected devices at scale
Secure, update, monitor and control connected devices at scale
Secure, update, monitor and control connected devices at scale
Back
The 2022 Best Practices Guide to manage the industry’s best certificates
Compare the most trusted certificates:
Powerful, all-in-one website security
- Priority Validation & Support
- Malware Scanning Service
- Vulnerability & PCI Scan
- Continuous CT Log Monitoring
- DigiCert Smart Seal or Norton Seal
- Industry-leading Warranty
The choice for digital-first businesses
- Priority validation & support
- Malware scan
- DigiCert Smart Seal
- Leading warranty
Secure, flexible and essential certificates
- Award-winning support
- 99% browser compatibility
- Available in OV and EV
- DigiCert Basic Seal
Flexible, capable and easy to add
- Available for all DigiCert OV certificates
- Secures primary domain
- Secures unlimited subdomains
Multiple domains. Flexible options.
- Available on all DigiCert OV and EV certificates
- Secure up to 250 subdomains
- Unified Communications Certificate (UCC)
- SAN (Subject Alternative Names) certificate
Today’s most-advanced seal of trust
- Win customer trust
- Increase conversions
- Features preferred by 83% of consumers
- Named “most modern” by consumers
Start delivering email your customers can trust
- Reduce risk of phishing exposure with DMARC
- Empower visual verification in customers’ inboxes
- Increase email open rates
Pre-quantum is the time to prepare
- Only available with Secure Site Pro certificates
- Preview your quantum readiness
- Hybrid certificate for pre- and post-validity
- Full documentation available
Achieve PSD2 compliance
- DigiCert is an EU Qualified Trust Service Provider (QTSP)
- Qualified TLS/SSL Certificates
- e-Seal and QSealC certificates
Sign code and protect software
- Protect your IP
- OV or EV certificates available
- Optional timestamp and key vault
- Support for HSMs
Client certificates to secure your business
- Encrypt email with S/MIME
- Enable two-factor authentication
- Manage access to network assets
Trusted document signing for the leading workflows
- Establishes legally binding identities
- Globally trusted
- Individual or organization certificates available
The 2022 Best Practices Guide to manage the industry’s best certificates
The latest best practices for the industry’s best certificate
Get the checklist that’s helped thousands of companies improve certificate management
Get the checklist that’s helped thousands of companies improve certificate management
Get the 2022 Edition of the TLS/SSL best practices guide
Get the 2022 Edition of the TLS/SSL best practices guide
See how the DigiCert Smart Seal wins throughout the customer journey
Learn how VMCs help IT, Risk Management and Marketing at the same time
The only Qualified Trust Services Provider with global reach and local expertise
See the PQC toolkit documentation
Everything you need to achieve PSD2 compliance
Manage code signing, keys and policies at scale for greater trust
Get a global perspective on managing document signing regulations
Back
WEBINAR
Taming device, identity and certificate sprawl
Digital Trust for the Real World
Explore these pages to discover how DigiCert and its partners are helping organizations establish, manage and extend digital trust to solve real-world problems.
Back
PARTNERSHIP BUILT ON TRUST
partnerships delivering digital trust around the world with:
- System Integrators
- Software Developers & Solution Providers
- OEMs
- Distributors & Resellers
- Managed Service & Cloud Service Providers
Back
CONTACT OUR SUPPORT TEAM
Americas
1.877.438.8776 (Toll Free US and Canada)
1.520.477.3102
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
+61.3.9674.5500
- Support
- Resources
- Tools
CONTACT OUR SUPPORT TEAM
Americas
1.866.893.6565 (Toll-Free U.S. and Canada)
1.801.770.1701 (Sales)
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
61.3.9674.5500
announcements
02-07-2018
Vincent Lynch
3-Year Certificates to Be Eliminated in Industry-Wide Change
UPDATE: While the industry has shortened validity times, we still offer service plans up to 2, 3, even 6 years—and the automation to make it seamless.
Last year, Certificate Authorities and web browser vendors voted to get rid of three-year TLS/SSL certificates in the CA/B Forum, an industry body which sets standards for publicly trusted TLS certificates.
That change will now take effect on March 1, 2018. After that date, the new maximum validity period for publicly trusted SSL certificates will be 825 days—which is a 2-year certificate with some additional time to allow for the replacement process. This is an industry-wide requirement and all Certificate Authorities will be required to comply.
This will align the maximum validity for DV and OV certificates with Extended Validation (EV) certificates. EV certificates have been limited to a 2-year maximum since their introduction in 2007, so this change will have no effect on these certificates.
DigiCert will stop accepting requests for three-year certificates on Tuesday, February 20, 2018. This is to ensure there is enough time to validate and issue all requests before the industry deadline.
DigiCert endorsed and voted for this CA/B Forum initiative as part of our advocacy for shorter certificate lifetimes.
Shorter Is Safer
While shorter certificate lifetimes may seem like a hassle for administrators, this reduction will make the web PKI more agile. Right now, the internet has to be concerned about the “long tail” of certificates—which expire up to 39 months from today.
Under those constraints, any changes made to industry standards, such as validation methods, signature algorithms, or key lengths, would take more than three years to completely take effect. This was an issue with the deprecation of the SHA-1 signature algorithm and RSA 1024-bit keys. In those scenarios, end-user security couldn’t wait for the natural expiration of these certificates, leading to cutoffs that required site operators to replace certificates mid-lifecycle.
It may not seem entirely intuitive, but with shorter lifetimes it’ll be reasonable to wait for the natural expiration of certificates, which will actually create less maintenance—and of course a safer internet.
.png )
-
The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.
-
-
© 2023 DigiCert, Inc. All rights reserved.
Legal Repository WebTrust Audits Terms of Use Privacy Policy Accessibility Cookie Settings Privacy Request Form