Perfect forward secrecy is a feature of SSL/TLS & an important part of the future of cybersecurity. Learn what this encryption system is & how it works.
Learn about how the validity periods for digital certificates are determined and the benefits of digital certificates.
In recent years the EV SSL "green address bar" has shrunk and evenually disappeared. We walk you through how that came to be.
On March 1 Sectigo will remove street address and postal/zip code information from its public certificates of all types. Our hosts explain why.
Sectigo announced that Baidu (NASDAQ: BIDU), a leading Chinese search engine with more than one billion daily page views, has chosen Sectigo to provide the back-end services for the company’s all-new Baidu Trust SSL Certificates. Baidu will offer Sectigo Domain Validated (DV), Organization Validated (OV), and Extended Validation (EV) certificates white-labeled under the Baidu Trust product line, greatly expanding Sectigo’s footprint in Asia.
With EV Code Signing Certificates, the EV vetting process is mandated by the CA/Browser Forum, discouraging fraudsters from attempting to obtain them.
Learn about research indicating that criminal marketplaces feature services to obtain original Extended Validation (EV) SSL certificates.
Why Google and Mozilla are wrong about the benefits of Extended Validation certificates that aim to prevent fraud and protect user privacy.
The majority of phishing sites now use SSL certificates to closely imitate the behavior of legitimate sites. Join our hosts as we dig into these findings.
Browsers are in a time of change for Extended Validation (EV) SSL indicators. Where once all popular browsers reliably displayed the company name in green to the left of the web address, now Chrome and Firefox have decided to remove the company name and require a click on the lock icon to see the certificate’s identity information.
The week before last, very quickly and without advance warning, Mozilla announced that it would remove the Extended Validation SSL certificate indicator from its upcoming build 70. This announcement spawned a very lively debate that is still going on. Below is my response to the thread, explaining why I believe it to be ill- considered and detrimental to overall internet security. Jason Soroko and I also covered Mozilla's decision to remove the EV SSL indicator in our Root Causes PKI and security podcast series.
Research shows that sites with Extended Validation SSL certificates are less likely for malware and phishing. So why do browsers say it isn't effective?