The London Protocol was originally proposed as a potential joint effort by CA Security Council members to combat phishing. All large commercial CAs revoke certificates for phishing websites when they are brought to their attention, but they do not proactively monitor their customers sites, and generally do not share information about misuse of certificates with […]
Our industry is moving toward universal support for Certificate Transparency (CT), one of the largest improvements to trust and security for the Web PKI system and SSL certificates in years. Later this month, CT will effectively become an industry-wide mandate when Google Chrome starts requiring it for all new publicly trusted SSL certificates. Already, hundreds […]
In about a month, a large number of existing Symantec SSL certificates will be distrusted by Google Chrome as part of their removal of Symantec root certificates. Starting in Chrome 66 beta and followed up in April when Chrome 66 stable is released, certificates issued by Symantec, GeoTrust, Thawte, and RapidSSL prior to June 1, […]
Your overall device and network security is related to your PKI design and certificate policy. Just as you’d build your house with an earthquake-resistant foundation, or ensure your roof can withstand a hurricane, you should design and deploy your PKI to resist common threats. Many of these decisions need to be made upfront, when you’re […]
Symantec-issued certificates do not need to be reissued now, during the busy holiday season, but will need to be reissued starting in 2018. DigiCert has met the December 1 deadline of integrating with Symantec systems, and all validation and issuance of TLS certificates is being handled by DigiCert’s backend. Initial results appear generally positive, with […]
Earlier this year, new industry standards were adopted which made Certificate Authority Authorization (CAA) record checking mandatory for all Certificate Authorities. This gives website administrators an additional tool for protecting their sites from mis-issuance, and a technical measure for enforcing an organization’s certificate policies. Introduction to CAA By setting up a CAA record you can […]
The new User role gives you a better way to manage your team’s access to the correct certificates.
Here’s how your company can get the most out of our Reseller Partner Account.
The right CA will provide the time, tools, and expertise to make certificate management easy for their business partners.