The Public Key Infrastructure (PKI) ecosystem relies on root certificates issued by various certificate authorities (CAs) like DigiCert. This is what browsers use to decide which websites can be trusted and which ones can’t. But if any CA can issue a TLS/SSL certificate for any domain, certificate issuance could happen without the knowledge of website […]
Certificate Transparency
Apple Announces Certificate Transparency Requirement
Following their 2018 WWDC conference, Apple announced they will begin requiring Certificate Transparency (CT) for all SSL/TLS certificates issued after October 15, 2018. Certificate Transparency is a recent addition to the SSL ecosystem, first introduced in 2013, which provides transparency by publicly logging SSL certificates. This allows auditors to get a more reliable look at […]
Scaling CT Logs: Temporal Sharding
Our industry is moving toward universal support for Certificate Transparency (CT), one of the largest improvements to trust and security for the Web PKI system and SSL certificates in years. Later this month, CT will effectively become an industry-wide mandate when Google Chrome starts requiring it for all new publicly trusted SSL certificates. Already, hundreds […]
DigiCert Certificates Will Be Publicly Logged Starting Feb. 1
Starting February 1, 2018 DigiCert will submit all newly issued and publicly trusted SSL certificates to Certificate Transparency (CT) logs by default. In the interest of improving our customer’s security and encouraging adoption, we are making this change ahead of Google’s industry-wide requirement that goes into effect in April 2018. CT logging has only been required […]
Google CT to Expand to All Certificates Types
The policy change goes into effect October 2017. Learn what this means for DigiCert customers.
Why You Should Log OV SSL Certificates
Logging OV SSL Certificates will help ensure that domain owners are alerted if a certificate is ever compromised.