Sectigo Blog

Leveraging a public root delivers instant universal trust across your user base. An organization may also have servers that are not external-facing and don't need publicly rooted certificates. These servers, however, may still need authentication, signing, and capability, to establish a secure TLS session with other internal servers or applications. This post explains three deployment architectures to consider for using Sectigo Private PKI.

The Root Causes podcast explores the important issues behind today’s world of PKI, online trust, and digital certificates. In episode 5 podcast hosts Jason Soroko (CTO of IoT, Sectigo) and Tim Callan (Senior Fellow, Sectigo) previously described the challenge quantum computing raises against the world’s de facto PKI infrastructure. In this episode they delve into the requirements for a new, post-RSA cryptographic model to replace today’s standard ciphers that will resist the advantages quantum computing holds for breaking today’s cryptography.

Citrix ADC’s SSL offload feature transparently improves the performance of websites that conduct SSL transactions. Citrix and Sectigo have partnered to make certificate management streamlined on Citrix Application Delivery Controller. We are pleased to announce that Sectigo’s Certificate Manager is now Citrix-ready with the latest versions of Citrix ADC.

Extended Validation (EV) SSL certificates are a weird animal when it comes to split testing. The presence or absence of an EV certificate affects the user experience in that the company-branded green address bar is either present or absent. Split-site testing routinely shows that subtle differences make a meaningful difference.

The Root Causes podcast explores the important issues behind today’s world of PKI, online trust, and digital certificates. In this episode hosts Jason Soroko (CTO of IoT, Sectigo) and Tim Callan (Senior Fellow, Sectigo) describe the upcoming Quantum Cryptographic Apocalypse, which is the inevitable day when quantum computing renders existing de facto cryptographic techniques obsolete. The Quantum Cryptographic Apocalypse will require a complete retooling of common PKI systems throughout all aspects of industry to keep our digital systems safe and functional.

While automated certificate management is not a requirement of S/MIME, it is a feature that is highly recommended. Enabling employees to share the burden of managing certificates may save a small amount of money in the short run, but problems will almost certainly arrive in the long run.