One-Year Public-Trust SSL Certificates: DigiCert’s Here to Help

By now you’ve likely heard about Apple’s announcement at the February 2020 Certificate Authority/Browser Forum meeting that they will no longer accept publicly trusted TLS webserver certificates valid for longer than 398 days after Sept. 1, 2020 in the Mac OS and iOS platforms. The CA/B Forum had previously voted down an initiative to reduce […]

This Month in SSL: August 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption New research released at Black Hat USA 2016 revealed major vulnerabilities in HTTP/2 protocol. Data Breaches A data breach caused by an employee at Sage U.K. software emphasized the hidden danger of insider […]

This Month in SSL: May 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption Microsoft announced they will deprecate SHA-1 within the next four months. OpenSSL released versions 1.0.2h and 1.0.1t, which fixed one high-severity flaw and four low-severity flaws. Google takes another step towards pushing […]

This Month in SSL: April 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption Google recently released a list of Certificate Authorities that are not trusted by browsers. Data Breaches A cybercriminal attempted to sell sensitive information for 1.5 million Verizon customers on the black market […]

This Month in SSL: March 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption Security researchers have discovered a flaw dubbed the DROWN vulnerability that allows an attack to decrypt traffic from secure servers supporting SSLv2, which is obsolete. Soon after researchers announced the vulnerability, OpenSSL […]

This Month in SSL: February 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption To address the SSL migration dates and the expanding threat landscape, the PCI Security Standards Council will be releasing PCI DDS version 3.2 earlier than the usual fall release. Data Security in […]

This Month in SSL: January 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption Firefox  users experienced some hiccups when Mozilla decided that the browser should reject all SHA-1 certificates starting January 1. Security scanners and antivirus products failed to connect to HTTPS sites when the […]