• SSL Review: April 2014

    Part 1 of 7 in the Series — SSL Review
    Entrust’s monthly SSL review discussions — and likely other digital certificates — recaps news, trends and opinions from the industry. Learn why April was one of the biggest months for SSL news on record.

        in SSL, SSL Deployment
    0
  • SSL Certificate Status Checking

    As part of its effort to promote SSL certificate best practices, the CA Security Council (CASC) has offered a couple of blogs on the importance of revocation checking

        in Secure Browsing, SSL, SSL Deployment
    0
  • Short-Lived Certificates

    Certificate revocation is a current SSL industry issue. There are many causes to the problem. Some end-users do not have certificate-revocation checking turned on. Browsers support CRL or OCSP, but in some cases not both. The certification authorities (CA) may not provide reliable revocation responses. And what if there are no revocation responses from a CA; should there be a

        in Secure Browsing, SSL, Technical
    0
  • Digital Certificate Revocation – What the Future Holds

    When you tell people that revocation doesn’t work, they tend to look at you incredulously: “You’ve got all these solutions: full CRLs, CRL distribution points, delta-CRLs, indirect CRLs, OCSP, stapled OCSP. Surely one of those will work.” That’s the problem, right there. There are so many protocol and configuration choices that no two products or services have chosen compatible options.

        in Certificate Management, SSL
    0
  • Short-Lived Certificates

    Certificate revocation is a current SSL industry issue. There are many causes to the problem. Some end-users do not have certificate-revocation checking turned on. Browsers support CRL or OCSP, but in some cases not both. The certification authorities (CA) may not provide reliable revocation responses. And what if there are no revocation responses from a CA; should there be a

        in Secure Browsing, SSL, Technical
    0
  • Digital Certificate Revocation – What the Future Holds

    When you tell people that revocation doesn’t work, they tend to look at you incredulously: “You’ve got all these solutions: full CRLs, CRL distribution points, delta-CRLs, indirect CRLs, OCSP, stapled OCSP. Surely one of those will work.” That’s the problem, right there. There are so many protocol and configuration choices that no two products or services have chosen compatible options.

        in Certificate Management, SSL
    0