Last year, Certificate Authorities and web browser vendors voted to get rid of three-year SSL certificates in the CA/B Forum, an industry body which sets standards for publicly trusted SSL certificates. That change will now take effect on March 1, 2018. After that date, the new maximum validity period for publicly trusted SSL certificates will […]
Starting February 1, 2018 DigiCert will submit all newly issued and publicly trusted SSL certificates to Certificate Transparency (CT) logs by default. In the interest of improving our customer’s security and encouraging adoption, we are making this change ahead of Google’s industry-wide requirement that goes into effect in April 2018. CT logging has only been required […]
Symantec-issued certificates do not need to be reissued now, during the busy holiday season, but will need to be reissued starting in 2018. DigiCert has met the December 1 deadline of integrating with Symantec systems, and all validation and issuance of TLS certificates is being handled by DigiCert’s backend. Initial results appear generally positive, with […]
After much anticipation, I’m happy to share the news that we completed our acquisition of Symantec’s Website Security and related PKI solutions, becoming the premier provider of SSL/TLS and PKI solutions. We enthusiastically welcome our new Symantec customers, partners, and employees. Now that the deal is complete, our two organizations can start working to build […]
Today, we are excited to announce our agreement to acquire Symantec’s Website Security business. The deal is expected to close before the end of the year, pending formal reviews. We will continue to operate from our Lehi, Utah headquarters with support from Symantec’s Mountain View and other global offices. With this deal, we are bringing […]
The market is at a tipping point with almost half of enterprises currently integrating security into DevOps initiatives.
This new partnership will accelerate development, increase the speed of innovation, and ensure continuous delivery of certificates for DevOps environments.
We expect the new CAA requirement to have a small impact on the security and complexity of the web, but we are happy it is an improvement with a low-cost process.
This vulnerability does not affect SSL/TLS certificates nor does it affect versions prior to OpenSSL 1.1.0.