A Guide to TLS Certificate Revocations

Certificate revocations can be disruptive and painful to customers and relying parties. We often get questions about why certificates were revoked, who said we need to revoke them and why more notice was not provided. This article provides background and details to these and other related questions. Background The CA/Browser (CA/B) Forum is one of […]

How to Choose the Right Type of TLS/SSL Certificate

From the server administrators of highly technological organizations, to product managers of financial institutions, down to the one-man startups that just want to secure their shopping cart, the same question pops up: “If TLS/SSL certificates all do the same thing, what type should we get?” All three types of TLS/SSL certificates do fundamentally the same […]

Position on 1-Year Certificates

Three, Two, One, Liftoff on One-Year TLS Certificates At the CA/Browser (CA/B) Forum in Bratislava, Slovakia, this week, Apple announced that beginning Sept. 1, newly issued publicly trusted TLS certificates are valid for no longer than 398 days. This followed a long history of the CA/B Forum community working to reduce certificate lifetimes and improve […]