• How OCSP Must-Staple Affects Certificate Revocation

    With the announcement of the Heartbleed bug and the resulting need to revoke large numbers of SSL certificates, the topic of certificate revocation has, once again, come to the fore. What are the issues with how revocation information is provided to the browsers? Entrust's Bruce Morton offers a detailed look.

        in Certificate Management, Digital Certificates, SSL, SSL Deployment
  • OCSP Stapling

    Digital certificate status is provided by the certificate revocation list (CRL) and online certificate status protocol (OCSP). The CRL is a list of all certificates that have been revoked. If the serial number is not on the list it is assumed to be good. OCSP provides a response for all certificates. In layman’s terms, the response is either good or

        in SSL, SSL Deployment
  • Always-On SSL

    Always-On SSL is an approach to securing your website to mitigate attacks against your users. When I think of Always-On SSL, I think of three concepts: SSL across your entire site, SSL deployed to the best practices, and SSL with leading technology. SSL across Your Entire Site The approach to Always-On SSL is to avoid hijacking of the sessions with

        in EV SSL, SSL, SSL Deployment
Page 1 of 212