Chrome Security Panel in DevTools demystifies what connection errors keep you away from the green padlock.
Announcements
OpenSSL Patches Two Security Vulnerabilities
The “high” and “low” severity vulnerabilities in OpenSSL do not affect SSL Certificates, but patch your OpenSSL framework as soon as possible.
Google Plans to Deprecate DHE Cipher Suites
“This is not a long-term solution as connections are only as secure as the weaker of the two configurations.”
The Case for Making the Move from SHA-1 to SHA-2 Certificates
Browsers might deprecate trust for SHA-1 Certificates sooner than initially announced. Switch to SHA-2 now.
Researchers Urge Administrators to Replace SHA-1 Certificates with SHA-2
Research findings do not directly undermine the security of the Internet at large. Given the lessons learned with the MD5 full break, it is not advisable to wait until these become practically possible.
How to Remove an Expired Intermediate from the SSL Certificate Chain
An expired intermediate certificate in your SSL Certificate chain can cause trust errors to users who visit your website. The certificate is unnecessary and can be safely deleted.
Major Browsers Announce RC4 Deprecation in Early 2016
Admins should take action if RC4 is part of current server configurations.
SysAdmin Day 2015 Giveaway
Follow DigiCert on Twitter, retweet us, and you could win.
OpenSSL Patches a “High” Severity Security Vulnerability
The new vulnerability in OpenSSL does not affect SSL Certificates, but system administrators should update OpenSSL as soon as patches are available.