• Moving to TLS 1.2

    In 2014, there will be a trend for website owners to implement TLS 1.2 on their servers. TLS 1.2 was defined in RFC 5246 in August 2008 and is the most secure version of SSL/TLS protocol. Although TLS 1.2 has been available for a few years, it is not well deployed. SSL Pulse indicates that only 26 percent of the

        in SSL, SSL Deployment
    0
  • Securing Software Distribution with Digital Code Signing

    This post was originally published on the CA Security Council blog. Code signing certificates from publicly trusted Certification Authorities (CAs) fulfill a vital need for authentication of software distributed over the Internet in our interconnected world. As the commonly referred to “Internet of things” continues to grow, consumers have access to millions of applications for their desktops, laptops, and mobile devices.

        in Code Signing, Public Key Infrastructure
    0
  • Updated SSL/TLS Deployment Best Practices

    First, I would like to than Ivan Ristic for his development of the SSL/TLS deployment Best Practices document. This is a simple overview of what a Web server administrator should consider in an SSL deployment. I am also looking forward to Ristic’s book, “Bulletproof SSL/TLS and PKI,” which hopefully will be released sometime soon. Version 1.3 of the best practices

        in SSL, SSL Deployment
    0
  • Myths about CAs and SSL

    In following the SSL industry, there are always comments about certification authorities (CAs) and their practices. In many cases, the Certificate Authority Security Council (CASC) considers these comments to be myths. As such, the CASC has collected these myths and provided responses, which some editors have published. Please read and you will find responses to the following myths: CAs are

        in SSL, SSL Deployment
    0
  • Updated SSL/TLS Deployment Best Practices

    First, I would like to than Ivan Ristic for his development of the SSL/TLS deployment Best Practices document. This is a simple overview of what a Web server administrator should consider in an SSL deployment. I am also looking forward to Ristic’s book, “Bulletproof SSL/TLS and PKI,” which hopefully will be released sometime soon. Version 1.3 of the best practices

        in SSL, SSL Deployment
    0
  • Myths about CAs and SSL

    In following the SSL industry, there are always comments about certification authorities (CAs) and their practices. In many cases, the Certificate Authority Security Council (CASC) considers these comments to be myths. As such, the CASC has collected these myths and provided responses, which some editors have published. Please read and you will find responses to the following myths: CAs are

        in SSL, SSL Deployment
    0
Page 1 of 212