Tag Archives: Public key certificate

Public Key Pinning Extension for HTTP

January 21, 2013 by Bruce Morton     No Comments

In 2011, Google added public key pinning to Chrome. They white-listed the certification authority public keys that could be used to secure Google domains.

First New gTLD Requests

June 14, 2012 by Bruce Morton     No Comments

ICANN has published the first new gTLD requests. If approved, these gTLDs will add to the current 22 generic TLDs and the 280 country code TLDs. The new gTLDs have mostly been requested by companies and governments. We see that Google has asked for .youtube and Ford has requested .ford. Amsterdam and London have asked [Read More...]

All SSL and Digital Certificates Are the Same, Right? Wrong

May 21, 2012 by Dave Rockvam     No Comments

If all digital certificates are the same, why choose anything but the basic certificate? Because all certificates are not the same. Currently, there are three classes of digital certificates as recognized by the CA/Browser Forum: Domain Validated (DV), Organization Validated (OV) and Extended Validated (EV). There is a common misconception that the only difference in [Read More...]

Filed Under: EV SSL, SSL Tagged With: Computer security, dv, EV

New gTLDs

May 15, 2012 by Bruce Morton     No Comments

Over the next year or so, some new generic Top-Level Domain (gTLD) names will be released. Just to catch everybody up, we currently have about two dozen generic TLDs that you can use to register a domain name. TLDs such as .com, .net and .org. There are also country specific TLDs (ccTLD) such as .ca, [Read More...]

If You Don’t Like Your CA’s Practices, Find One More Sympatico

April 24, 2012 by Jon Callas     No Comments

The following Mozilla bug came my way via the Cryptography mailing list. The gist of it is that a Norton (né VeriSign) customer asked for a certificate with two-year certificate, and got one with six-year validity. I don’t precisely understand why the customer is complaining to Mozilla, but they didn’t get satisfaction with Norton, who [Read More...]

Security Focus: It’s What’s Behind the Seal That Matters

April 24, 2012 by Dave Rockvam     No Comments

In my last post, I briefly discussed a survey Entrust commissioned to understand the effect trust seals have on online transaction behavior. Coincidentally, I discovered an article in IEEE Security & Privacy magazine about a similar survey the magazine conducted. Security-related items were one of eight different factors the survey identified that affected the participants’ [Read More...]

Disappointment Over Speeding up SSL

April 23, 2012 by Jon Callas     No Comments

A year and a half ago, Google started an experiment to speed up SSL by 30% by using an improvement called False Start. Our own Bruce Morton wrote about it not once but twice, and most of the world has been hopeful about the experiment. What’s not to like about a 30% speed improvement? Sadly, [Read More...]

Survey: Site Seals vs Reliable Security – Which is Most Important?

April 10, 2012 by Dave Rockvam     No Comments

There is a lot of hype right now about a major player in the SSL security space “rebranding” itself as the go-to SSL provider. But hype and big brand names alone shouldn’t influence security buying decisions. While this sounds logical, too many companies and organizations pay a premium for an over-marketed SSL trust seal. Entrust [Read More...]

Dutch Government: PKI alternatives, replacements not on horizon

March 29, 2012 by Dave Rockvam     No Comments

In July 2011, Dutch certification authority (CA) DigiNotar experienced a security incident that affected the national security infrastructure of both governmental and non-governmental bodies in the Netherlands. The government commissioned a report looking into the incident and the broader CA/SSL market. One of the conclusions of the Dutch government’s report is that alternatives to PKI [Read More...]