3-Year Certificates to Be Eliminated in Industry-Wide Change

Last year, Certificate Authorities and web browser vendors voted to get rid of three-year SSL certificates in the CA/B Forum, an industry body which sets standards for publicly trusted SSL certificates. That change will now take effect on March 1, 2018. After that date, the new maximum validity period for publicly trusted SSL certificates will […]

DigiCert Certificates Will Be Publicly Logged Starting Feb. 1

Starting February 1, 2018 DigiCert will submit all newly issued and publicly trusted SSL certificates to Certificate Transparency (CT) logs by default. In the interest of improving our customer’s security and encouraging adoption, we are making this change ahead of Google’s industry-wide requirement that goes into effect in April 2018. CT logging has only been required […]

HTTPS-Only Features in Major Browsers

You may not know this little fact: certain browser features require HTTPS to work. Features like getting a user’s location, accessing their microphone, or storing data locally on their device, all require that your website supports HTTPS. We often talk about the benefits to the user experience and website reputation by adopting HTTPS, but being […]

DigiCert Now Validating & Issuing SSL/TLS Certificates for Symantec Customers

Symantec-issued certificates do not need to be reissued now, during the busy holiday season, but will need to be reissued starting in 2018. DigiCert has met the December 1 deadline of integrating with Symantec systems, and all validation and issuance of TLS certificates is being handled by DigiCert’s backend. Initial results appear generally positive, with […]

How to Maintain Trust in Your Symantec-Issued Certificates

Jeremy Rowley, EVP of Product at DigiCert, answers common questions about how customers can maintain trust in their Symantec-issued certificates. With DigiCert’s acquisition of Symantec Website Security, there has been some misinformation in the market about how the browser timeline affects Symantec-issued certificates. After reading this, you will have a clear understanding of what the […]

The Security Benefits of CAA

Earlier this year, new industry standards were adopted which made Certificate Authority Authorization (CAA) record checking mandatory for all Certificate Authorities. This gives website administrators an additional tool for protecting their sites from mis-issuance, and a technical measure for enforcing an organization’s certificate policies. Introduction to CAA By setting up a CAA record you can […]

Prepare Now for General Data Protection Regulation or Be Ready to Pay Fines

The new European Union General Data Protection Regulation (GDPR) deadline is May 25, 2018, and despite that date quickly approaching, research shows many companies still aren’t ready. If they remain non-compliant, companies will face a fine up to 4 percent of annual turnover or €20 million (whichever is greater) per breach or issue related to […]

How to Build a PKI That Scales: Hosted vs. Internal [SME Interview]

In our previous interview with Darin Andrew, Senior PKI Architect at DigiCert, we discussed the differences between public and private PKI. We established that most enterprises use a hybrid PKI solution. That said, you have two options for implementing your private PKI: (1) use a hosted solution from a certificate authority (CA) or (2) build […]