Free replacement certificates are available—visit your existing Symantec, Thawte, GeoTrust, and RapidSSL portals. With the Google Chrome 66 beta release scheduled for March 15th—to be followed by the Chrome 66 stable version on April 17th of this year—we’re continuing to communicate with you, our customers, through multiple channels about how to replace affected Symantec-issued certificates […]
Last year, Certificate Authorities and web browser vendors voted to get rid of three-year SSL certificates in the CA/B Forum, an industry body which sets standards for publicly trusted SSL certificates. That change will now take effect on March 1, 2018. After that date, the new maximum validity period for publicly trusted SSL certificates will […]
Last week, security researchers published two vulnerabilities—known as Meltdown and Spectre—which affect the majority of modern computers. Both of these vulnerabilities target low-level functionality of CPU chips, making it possible to read process- and kernel-level data. The technical explanation of these vulnerabilities can seem complex because it requires knowledge of CPU architecture. In simple terms, […]
Jeremy Rowley, EVP of Product at DigiCert, answers common questions about how customers can maintain trust in their Symantec-issued certificates. With DigiCert’s acquisition of Symantec Website Security, there has been some misinformation in the market about how the browser timeline affects Symantec-issued certificates. After reading this, you will have a clear understanding of what the […]
Your CA partner should become your partner in security and be able to offer more than just digital certificates.
The CA/Browser Forum (CAB Forum) comprises the world’s leading CAs and browser vendors. The CAB Forum meetings and discussions attempt to build consensus on rules and guidelines about global digital certificate practices. One common topic is how to shorten certificate lifetimes. The goal is to accelerate security efforts and minimize the potential damage caused by […]
Audit logs can help enterprises monitor and keep track of potential security breaches or fraudulent attempts.
Google does not require DigiCert to enable CT for all Organization Validated SSL Certificates.
Short-lived certificates are a new innovation that can be used to extend TLS protections to a greater number of users.