Chrome Security Panel in DevTools demystifies what connection errors keep you away from the green padlock.
The “high” and “low” severity vulnerabilities in OpenSSL do not affect SSL Certificates, but patch your OpenSSL framework as soon as possible.
“This is not a long-term solution as connections are only as secure as the weaker of the two configurations.”
Browsers might deprecate trust for SHA-1 Certificates sooner than initially announced. Switch to SHA-2 now.
Research findings do not directly undermine the security of the Internet at large. Given the lessons learned with the MD5 full break, it is not advisable to wait until these become practically possible.
An expired intermediate certificate in your SSL Certificate chain can cause trust errors to users who visit your website. The certificate is unnecessary and can be safely deleted.
Admins should take action if RC4 is part of current server configurations.
Follow DigiCert on Twitter, retweet us, and you could win.
The new vulnerability in OpenSSL does not affect SSL Certificates, but system administrators should update OpenSSL as soon as patches are available.