CA/Browser Forum Updates Requirements for Code Signing Certificate Pri... May 2022 by Bruce Morton

The CA/Browser Forum has approved Ballot CSC-13, which aims to increase the protection of code signing certificate private keys. The…

Timestamp Requests and SHA-1 Deprecation May 2022 by Bruce Morton

Entrust hosts a time-stamp authority (TSA) to support our customers who digitally sign data such as code and documents. When…

SSL Review: March 2022 May 2022 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends, and opinions from the industry. PKI Consortium PKI…

SSL Review: February 2022 April 2022 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends, and opinions from the industry. Entrust Apple Changes…

SSL Review: January 2022 April 2022 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions – recaps news, trends, and opinions from the industry. Entrust 2022 –…

SSL Review: December 2021 March 2022 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends, and opinions from the industry. Entrust New Requirement…

Apple Changes S/MIME Certificate Validity Period to 1185-Days February 2022 by Bruce Morton

In November 2021, we posted that Apple set the validity period of S/MIME certificates to 825 days. On February 1,…

2022 – Looking Back, Moving Forward with TLS January 2022 by Bruce Morton

Looking back at 2021 In 2021, HTTPS was everywhere and use of the TLS 1.3 protocol continued to grow. With…

New Requirement Will Deprecate the Organization Unit (OU) Field in TLS... December 2021 by Bruce Morton

In June 2021, the CA/Browser Forum  passed ballot SC47 to remove the organization unit (OU) field from all public trust…

SSL Review: November 2021 December 2021 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Discussing Wildcard…

Apple Reduces S/MIME Certificate Validity Period to 825-Days November 2021 by Bruce Morton

At the October 2021 CA/Browser virtual face-to-face conference, Apple advised of updates to their root certificate program. The updates included…

Wildcard and multi-domain TLS certificates and ALPACA attack November 2021 by Bruce Morton

Marcus Brinkmann presented the Application Layer Protocol Confusion-Analyzing and Mitigating Cracks in TLS Authentication (ALPACA) attack at Black Hat USA…

SSL Review: October 2021 November 2021 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. F5 Market Screener…

SSL Review: September 2021 October 2021 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Let’s Encrypt Root…

SSL Review: August 2021 September 2021 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. PKI Consortium Increasing…

SSL Review: July 2021 August 2021 by Bruce Morton

The Entrust monthly SSL review covers TLS/SSL discussions – recaps, news, trends, and opinions from the industry. Entrust Gmail support…

SSL Review: June 2021 July 2021 by Bruce Morton

The Entrust monthly SSL review covers TLS/SSL discussions – recaps news, trends, and opinions from the industry. CA/Browser Forum Ballot…

SSL Review May 2021 June 2021 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions – recaps news, trends, and opinions from the industry. Entrust Learn what…

SSL Review: April 2021 May 2021 by Bruce Morton

The Entrust monthly SSL review covers SSL/TLS discussions ­– recaps news, trends, and opinions from the industry. CA/Browser Forum Domain…

SSL Review: March 2021 April 2021 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Cloudflare announces Heartbleed Revisited…

SSL Review: February 2021 March 2021 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Certificate Transparency Google announces…

SSL Review: January 2021 February 2021 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Looking Back at…

Code Signing Baseline Requirements Oblige Larger Keys for Crypto Effic... January 2021 by Bruce Morton

Signing certificates are used to validate a signature on code or a document. As we look ahead to the future…

SSL Review: December 2020 January 2021 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Kazakhstan MITM Certificate Mozilla…

Looking Back at 2020 January 2021 by Bruce Morton

2020 felt more like a maintenance year in the SSL/TLS ecosystem. Other than the certificate validity period changing from 825-days…

SSL Review: November 2020 December 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust How the Changes…

SSL Review: October 2020 November 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Chrome Root Program and…

SSL Review: September 2020 October 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust TLS Protocol 1.2…

TLS Protocol 1.2 Vulnerable to Raccoon Attack September 2020 by Bruce Morton

Recently, a team of researchers discovered a vulnerability with all versions of the SSL and TLS 1.2 and prior protocols…

SSL Review: August 2020 September 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions – recaps news, trends, and opinions from the industry. 398-Day Certificate Validity Apple…

SSL Review: July 2020 August 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Why Google’s…

SSL Review: June 2020 July 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard Frost…

SSL Review: April and May 2020 June 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions – recaps news, trends, and opinions from the industry. Entrust Datacard Best…

SSL Review: March 2020 April 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers TLS/SSL discussions – recaps news, trends and opinions from the industry. Apple on 398-day…

SSL Review: February 2020 March 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions – recaps news, trends and opinions from the industry. Entrust Datacard Apple…

Apple Announces 398-day Maximum Certificate Lifetime February 2020 by Bruce Morton

At the 49th meeting of the CA/Browser Forum held in February 2020, Apple announced that they are changing their root…

SSL Review: January 2020 February 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. CA Security Council…

SSL Review: December 2019 January 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard The…

SSL Review: November 2019 December 2019 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard Chrome…

Chrome Kills Mixed Content for HTTPS November 2019 by Bruce Morton

In a phased approach, Chrome plans to block mixed content on secure websites to improve user security. Most browsers already block…

SSL Review: October 2019 November 2019 by Bruce Morton

CASC Paul Walsh provides a great blog about The Insecure Elephant in the Room and browser based UI Patrick Nohe hashes out Online…

SSL Review: September 2019 October 2019 by Bruce Morton

Entrust Datacard The Value of EV Certificates Remains Regardless of Changes to the EV Indicator in Major Browsers Shortening Validity…

SSL Review: August 2019 September 2019 by Bruce Morton

CASC … 9 Common Myths About CAs Shortening Validity Period of SSL/TLS Certificates … Web body mulls halving HTTPS cert…

SSL Review: July 2019 August 2019 by Bruce Morton

CASC The Advantages of Short-Lived SSL Certificates for the Enterprise Bulletproof TLS Newsletter #55 Kazakhstan intercepts TLS traffic Hashedout provides input…

SSL Review: June 2019 July 2019 by Bruce Morton

CASC What the Latest Firefox Update Means for SSL Certificates What Are Subordinate CAs and Why Would You Want Your…

SSL Review: May 2019 June 2019 by Bruce Morton

The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry….

SSL vs. TLS May 2019 by Bruce Morton

Several years ago, I wrote “Is it SSL, TLS or HTTPS?” This was a simple blog to talk about the…

SSL Review: April 2019 May 2019 by Bruce Morton

The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry….

SSL Review: March 2019 April 2019 by Bruce Morton

The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry….

SSL Review: February 2019 March 2019 by Bruce Morton

Entrust Datacard provides information on TLS 1.3 and phone domain name validation methods: TLS 1.3, Less is More Phone Domain Name…

What’s the Difference Between a Public and Private Trust Certificate... March 2019 by Bruce Morton

Public and private trust certificates are types of SSL/TLS certificates that are formatted to suit different use cases. Entrust Datacard…

IP Address Validation Used for Issuing SSL/TLS Certificates March 2019 by Bruce Morton

The CA/Browser Forum continues to update the validation methods used for issuing SSL/TLS certificates to improve security. The latest, Ballot 7,…

Phone Domain Name Validation for SSL Certificates February 2019 by Bruce Morton

The CA/Browser Forum continues to improve domain name validation for SSL/TLS certificates. Following new methods to verify domain names using emails…

SSL Review: January 2019 February 2019 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard ……

TLS 1.3, Less is More February 2019 by Bruce Morton

Increases in both performance and security are what can be expected as TLS 1.3 takes a less is more approach…

Introducing Domain Name Validation Method 13 January 2019 by Bruce Morton

In 2018, the CA/Browser Forum held a domain validation summit to the review the approved domain validation methods. The meeting covered…

Removal of Underscores from Domain Names January 2019 by Bruce Morton

In November 2018, the CA Browser Forum voted to sunset the use of underscore characters in the domain names of SSL/TLS…

SSL Review: December 2018 January 2019 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. CA Security Council……

2019 – Looking Back, Moving Forward January 2019 by Bruce Morton

Looking Back at 2018 2018 was an active year for SSL/TLS. We saw the SSL/TLS certificate validity period drop to…

What Does Your CAA Say? January 2019 by Bruce Morton

Certification Authority Authorization (CAA) is a method for a domain owner to permit one or more certification authorities (CAs) to…

Major Browsers Coordinated on Deprecating TLS 1.0 and 1.1 November 2018 by Bruce Morton

In an unprecedented move for the SSL/TLS ecosystem, the four major browsers have uniformly announced that they will deprecate TLS…

Domain Validation – Where are We Now? August 2018 by Bruce Morton

Public trust SSL/TLS certificates assert an association between a domain name and a public key. The domain name may be…

Chrome Will Show Not Secure for all HTTP Sites Starting July 2018 March 2018 by Bruce Morton

Through 2017 and into 2018, we have seen the use of HTTPS grow substantially. Last Fall Google announced the following…

Grade Changes to the SSL Server Test – Coming March 2018 February 2018 by Bruce Morton

Entrust Datacard supports SSL Server Testing as part of our best practices approach to certificate management. This free, web-based service tests server…

Chrome Requires CT after April 2018 February 2018 by Bruce Morton

The Internet ecosystem has been working towards Chrome’s requirement for certificate transparency (CT) for all SSL/TLS certificates in April 2018….

ROBOT Attack on RSA Encryption December 2017 by Bruce Morton

The Return Of Bleichenbacher’s Oracle Threat (ROBOT) attack takes advantage of an old vulnerability discovered by Daniel Bleichenbacher in 1998. We have previously seen…

How Can I Protect My Brand TLD? November 2017 by Bruce Morton

Originally, there were just seven generic top level domains (gTLDs) and a couple hundred country code TLDs (ccTLDs). In 2012, ICANN announced…

OCSP Must-Staple June 2014 by Bruce Morton

This post was originally published by on the CA Security Council blog. With the announcement of the Heartbleed bug and the…

  • Sort by

  • Topic