The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry.
Entrust Datacard discusses:
- SSL vs. TLS and the movement to a more secure protocol
CA/Browser Forum:
- Clarifies subject distinguished name requirements for SSL/TLS certificates: Ballot SC17 Version 7: Alternative Registration Numbers for EV Certificates
- Adds new domain validation method: Ballot SC19: Phone Contact with DNS CAA Phone Contact
Hashedout provides input on:
- Protecting against Man-In-The-Middle Attacks, including supporting TLS 1.3
- With the growth of SSL/TLS, Protecting against Man-In-The-Middle Attacks
- Automated (SSL/TLS) Certificate Management Environment: ACME Protocol: What it is and how it works
Other News and Notes
- Bulletproof TLS Newsletter #53 - Certificate Authority Certinomis removed from Firefox browser
- Eric Law provides insight regarding Edge76 vs. Edge18 vs. Chrome
- Scott Helme discusses Deprecating TLSv1.0 and TLSv1.1 gracefully with Cloudflare Workers
- SSL certificate subscribers should use certificates signed with the SHA-2 hash algorithm as SHA-1 collision attacks are now actually practical and a looming danger
- Let's Encrypt announces Introducing Oak, a Free and Open Certificate Transparency Log for SSL/TLS certificates
- All UK government sites do not support HTTPS, so Some GOV.UK Sites Unreachable Due to HSTS Changes in Windows Updates