New CA/B Forum Proposal to Shorten Certificate Lifetimes: Will It Improve Security?

A new CA/Browser Forum proposal being discussed now would shorten maximum certificate lifetimes to 13 months. This comes after lifetimes were reduced from 39 to 27 months, effective March 2018. If passed, these changes would go into effect in March 2020. This blog analyzes the merits of this proposal and how the proposed security benefit […]

How to Improve your Organization’s Crypto-Agility

As the sheer number of connected devices continues to rise and technology continues to develop toward a future full of quantum computers, securing devices/applications and becoming “crypto agile” is fundamental to an organization’s effort to become and stay secure, today and in the future. Read on to discover how to improve your organization’s crypto-agility. A […]

Encryption and decryption – the never-ending battle

Ciphers have been used to encrypt and decrypt sensitive date since 3,000 B.C. However, their importance and relevance for day-to-day information security became important with the expansion of the internet and the escalating volumes of sensitive data exchanged online every day. The history of ciphers and encryption is a compelling one. It has included a […]

New Code Signing Working Group Chartered Due to Regulation Changes in CA/Browser Forum

With changes to the governance regulations in the CA/Browser Forum, a new Code Signing Working Group was officially chartered in March 2019. The working group is composed of Certificate Authorities and certificate consumers (operating systems that consume these certificates), and its main goal is to set standards related to the issuance and management of code […]

DigiCert on Quantum 2: When Will Cryptographically Relevant Quantum Computers Arrive?

[This is part of a continuing series on quantum computing. For the first part, click here.] Once people understand the threat that quantum computers pose to classical cryptographic algorithms like RSA and ECC, the next question that always gets asked is: when is it likely that such a computer will be available? This was one […]

Why Safari Warns You That Some Sites are “Not Secure”

As of March 2019, Safari on macOS and iOS displays a warning reading “Not Secure” in the address bar for all HTTP connections. Last year, Google Chrome and Mozilla Firefox became the first major browsers to display the same warning. The “Not Secure” warning appears on all pages in Safari when connecting over HTTP. If […]

Posted in SSL

Google’s Signed HTTP Exchange Solution Displays Publisher URLs for AMP Pages via TLS

DigiCert first and only public CA to issue TLS certificates that enable Signed HTTP Exchange Web operators using the Google AMP (Accelerated Mobile Pages) platform for fast mobile pages now have a solution for displaying their own URL on AMP-developed mobile sites and in Google search results. Recently, Google announced the availability of Signed HTTP […]

Qualified Certificates for PSD2 Required by EU by September 2019

European payment services providers are in full gear to meet the September 2019 effective date for PSD2 technical standards, which includes the use of Qualified TLS and eSeal signing certificates for secure online authentication and communication. Through its European Qualified Trust Service Provider (TSP), QuoVadis, DigiCert is able to provide qualified digital certificates for PSD2. […]

What’s in a Name? Reviewing Website Identification

The use of TLS certificates to secure and identify websites has dramatically expanded on the World Wide Web. This has been driven by browsers showing negative indicators for non-https sites, thus encouraging websites to use TLS. The screenshots below show Firefox’s and Chrome’s new indicator for sites that are not using a TLS certificate: Figure […]