Back
Secure, update, monitor and control connected devices at scale
- Digital Trust for:
- Enterprise IT, PKI & Identity
- Websites & Servers
- Code & Software
- Documents & Signing
- IoT & Connected Devices
Manage PKI and Certificate risk in one place now
Manage PKI and Certificate risk in one place now
The smarter way to manage certificate lifecycles
Continuous Signing for CI/CD & DevOps
Secure, flexible and global signing
Trusted from silicon to in-the-field
Device security without compromise
Accelerate secure app development
2022 Edition of the TLS/SSL Best Practices Guide
2022 Edition of the TLS/SSL Best Practices Guide
How to establish a signing policy DevOps will actually adopt
Get a global perspective on managing document signing and regulations
Secure, update, monitor and control connected devices at scale
Secure, update, monitor and control connected devices at scale
Secure, update, monitor and control connected devices at scale
Back
The 2022 Best Practices Guide to manage the industry’s best certificates
Compare the most trusted certificates:
Powerful, all-in-one website security
- Priority Validation & Support
- Malware Scanning Service
- Vulnerability & PCI Scan
- Continuous CT Log Monitoring
- DigiCert Smart Seal or Norton Seal
- Industry-leading Warranty
The choice for digital-first businesses
- Priority validation & support
- Malware scan
- DigiCert Smart Seal
- Leading warranty
Secure, flexible and essential certificates
- Award-winning support
- 99% browser compatibility
- Available in OV and EV
- DigiCert Basic Seal
Flexible, capable and easy to add
- Available for all DigiCert OV certificates
- Secures primary domain
- Secures unlimited subdomains
Multiple domains. Flexible options.
- Available on all DigiCert OV and EV certificates
- Secure up to 250 subdomains
- Unified Communications Certificate (UCC)
- SAN (Subject Alternative Names) certificate
Today’s most-advanced seal of trust
- Win customer trust
- Increase conversions
- Features preferred by 83% of consumers
- Named “most modern” by consumers
Start delivering email your customers can trust
- Reduce risk of phishing exposure with DMARC
- Empower visual verification in customers’ inboxes
- Increase email open rates
EU compliant, qualified and trusted
- QWAC (Qualified Web Authentication Certificate)
- eIDAS Qualified eSignature Certificates
- eIDAS Qualified eSeal Certificates
- Swiss ZertES Certificates
- Netherlands PKIoverheid Certificates
Pre-quantum is the time to prepare
- Only available with Secure Site Pro certificates
- Preview your quantum readiness
- Hybrid certificate for pre- and post-validity
- Full documentation available
Achieve PSD2 compliance
- DigiCert is an EU Qualified Trust Service Provider (QTSP)
- Qualified TLS/SSL Certificates
- e-Seal and QSealC certificates
Sign code and protect software
- Protect your IP
- OV or EV certificates available
- Optional timestamp and key vault
- Support for HSMs
Client certificates to secure your business
- Encrypt email with S/MIME
- Enable two-factor authentication
- Manage access to network assets
Trusted document signing for the leading workflows
- Establishes legally binding identities
- Globally trusted
- Individual or organization certificates available
The 2022 Best Practices Guide to manage the industry’s best certificates
The latest best practices for the industry’s best certificate
Get the checklist that’s helped thousands of companies improve certificate management
Get the checklist that’s helped thousands of companies improve certificate management
Get the 2022 Edition of the TLS/SSL best practices guide
Get the 2022 Edition of the TLS/SSL best practices guide
See how the DigiCert Smart Seal wins throughout the customer journey
Learn how VMCs help IT, Risk Management and Marketing at the same time
The only Qualified Trust Services Provider with global reach and local expertise
See the PQC toolkit documentation
Everything you need to achieve PSD2 compliance
Manage code signing, keys and policies at scale for greater trust
Get a global perspective on managing document signing regulations
Back
WEBINAR
Taming device, identity and certificate sprawl
-
Digital Trust for the Real World
How DigiCert and its partners are putting trust to work to solve real problems today.
- The 4 Elements of Digital Trust
- The Case for Compliance
Executive Summary
While the world is pushed—or forced—toward digitizing all business processes, workflows and functions, the lessons from the early days of the Internet can be a predictor of success. Learn how Digital Trust can make or break your strategy and how the wrong solution may be setting your organization up for failure in less than three years.
View the webinar on-demand: “Taming Certificate Sprawl”
Back
PARTNERSHIP BUILT ON TRUST
Powerful partnerships delivering digital trust around the world for:
- Enterprises
- Small & Medium Businesses
- Governments
- Technology Alliances
- Consortia
Back
CONTACT OUR SUPPORT TEAM
Americas
1.877.438.8776 (Toll Free US and Canada)
1.520.477.3102
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
+61.3.9674.5500
- Support
- Resources
- Tools
CONTACT OUR SUPPORT TEAM
Americas
1.877.438.8776 (Toll Free US and Canada)
1.520.477.3102
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
+61.3.9674.5500
Certificate Inspector
03-01-2016
Flavio
Preventing the DROWN Attack
Researchers recently uncovered the DROWN vulnerability in SSL v2. DROWN stands for Decrypting RSA with Obsolete and Weakened encryption. It affects HTTPS and other services that rely on the SSL and TLS protocols.
Attackers can use the DROWN vulnerability to break the encryption that is used to protect your sensitive data from prying eyes. If the encryption is broken, attackers can read/steal your sensitive communications (e.g., passwords, financial data, and emails). In some situations, attackers may also be able to impersonate trusted websites.
Are You Vulnerable to the DROWN Attack?
It is estimated that 22% of servers may be vulnerable to the DROWN attack. If you have a website, mail server, and other services that rely on TLS, you may be susceptible to this attack as well.
To check a website or a public facing server to see if it supports SSL v2, you can use tools such as DigiCert® SSL Installation Diagnostics Tool. To check all the servers in your network (public and private) for SSL v2 support, you can use tools such as DigiCert® Certificate Inspector.
Mitigating the DROWN Attack
If you discover that you have servers or services that still support SSL v2, the fix is straightforward: disable SSL v2.
- OpenSSL: If you are using OpenSSL, the easiest solution is to upgrade to recently released versions of OpenSSL 1.0.2g and1.0.1s. You should also upgrade to these if you are still using one of the older (no longer supported) versions of OpenSSL.
- Microsoft IIS: If you are using IIS 7 or newer, SSL v2 is disabled by default. If you manually enabled support for SSL v2, go back and disable it. If you are running older (no longer supported) version of IIS, then upgrade to IIS version 7 or newer.
- Network Security Services (NSS): If you are using NSS 3.13 or newer, SSL v2 is disabled by default. If you manually enabled support for SSL v2, you need to go back and disable it. If you are using an older version of NSS, simply upgrade to NSS 3.13 or newer.
- Apache, Nginx, etc.: If your servers support SSL v2, you need to disable support for it.
-
The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.
-
-
© 2023 DigiCert, Inc. All rights reserved.
Legal Repository WebTrust Audits Terms of Use Privacy Policy Accessibility Cookie Settings Privacy Request Form