Majority of Companies Prepared for Upcoming Chrome 70 Distrust of Symantec-Issued TLS Certificates

DigiCert ready to help those yet to act with quick, free replacement process DigiCert continues to help customers make the transition with free replacements of Symantec-issued TLS certificates to extend trust through the end of the licensing period for their original purchase. As a company, we also have been undertaking unprecedented outreach, with millions of […]

No more unnecessary password changes for Certificate Authorities

After over a year of effort, Ballot SC3 was just unanimously passed by the CA/Browser Forum. This is the first major upgrade to the Network and Certificate System Security Requirements to come out of the Forum’s Network Security Working Group. It contains several important improvements, but one is especially important: removing the requirement that passwords […]

New CAB Forum Validation Rules Go Into Effect Today

As of August 1, 2018, Certificate Authorities (CAs) are not allowed to use Methods #1 and #5 from section 3.2.2.4 of the Baseline Requirements to validate domain ownership when issuing publicly trusted certificates for use on the web. Continued use of these methods will be considered misissuance and may be subject to revocation or distrust […]

Seeing a “Not Secure” Warning in Chrome? Here’s Why and What to Do about It

The latest version of the Google Chrome browser, version 68, introduced a new “Not Secure” warning in the address bar that appears anytime you are visiting an insecure web page. The warning refers to the lack of security for the connection to that page. It’s alerting you that information sent and received with that page […]

Assessing the London Protocol

The London Protocol was originally proposed as a potential joint effort by CA Security Council members to combat phishing. All large commercial CAs revoke certificates for phishing websites when they are brought to their attention, but they do not proactively monitor their customers sites, and generally do not share information about misuse of certificates with […]

Apple Announces Certificate Transparency Requirement

Following their 2018 WWDC conference, Apple announced they will begin requiring Certificate Transparency (CT) for all SSL/TLS certificates issued after October 15, 2018. Certificate Transparency is a recent addition to the SSL ecosystem, first introduced in 2013, which provides transparency by publicly logging SSL certificates. This allows auditors to get a more reliable look at […]

Keeping Track of Changes in Chrome for HTTPS & HTTP Indicators

If you are a regular user of Chrome or work in web development/IT, you’ve likely noticed frequent changes to the browser’s ‘security UI’—the icons and indicators that tell users if the page they are visiting is secure. The internet has undergone an HTTPS renaissance over the last 10 years since it became obvious that troves […]

Meeting the General Data Protection Regulation (GDPR)

At the end of this week, strong new legislation takes effect in the European Union to give greater protection to European consumers and their data. This collection of laws, known as the General Data Protection Regulation, or GDPR, will greatly expand European individuals’ control over data collected by companies. DigiCert is committed to data security […]

Guidance for the EFAIL S/MIME Vulnerability

Today, a group of security researchers from Germany and Belgium published a vulnerability affecting two email encryption systems: S/MIME and OpenPGP. Dubbed “EFAIL,” this vulnerability has received notable press coverage and we wanted to provide a summary and guidance for DigiCert customers using S/MIME email certificates and other users of secure email. This research raises […]