-
Learn More
Google Announces Intentions to Limit TLS Certificates to 90 Days: Why Automated CLM is Crucial
Blog Post from Sectigo
Blog Post Mar 13, 2023On March 3, Google announced in its “Moving Forward, Together” roadmap the intention to reduce the maximum possible validity for public TLS certificates from 398 days to 90 days, in a future policy update or a CA/B Forum Ballot Proposal. This drop to only 90 days maximum validity will mean major changes for the industry.
-
Listen Now
EPISODE 284
Broadcast Date:
March 10, 202324 minutes
Podcast Mar 10, 2023Root Causes 284: 90-day SSL Certificates Are on the Way
The Google Chrome root program recently announced its intention to reduce the maximum term for public SSL certificates to 90 days.
-
Watch Now
Q1 2023 Sectigo Pulse Webinar
Webinar from Sectigo
Webinar Mar 07, 2023Q1 2023 Sectigo Pulse Webinar
Join the Q1 2023 Sectigo Pulse Webinar to hear about the latest CA/B Forum meeting updates, the TrustCor deprecation, S/MIME standards and CA agnostic CLM.
-
Listen Now
EPISODE 283
Broadcast Date:
March 6, 202311 minutes
Podcast Mar 06, 2023Root Causes 283: Google Optional OCSP Proposal Clarified
In our episode 281 we reported on Google's proposal for optional OCSP. In this episode we correct some of our earlier reporting in that episode.
-
Listen Now
EPISODE 282
Broadcast Date:
March 2, 202329 minutes
Podcast Mar 02, 2023Root Causes 282: HSMs and Post Quantum Cryptography
We explain where Hardware Secure Modules (HSMs) fit into the world of PQC, including hybrid certificates and defining how HSMs will incorporate PQC.
-
Listen Now
EPISODE 281
Broadcast Date:
February 27, 202326 minutes
Podcast Feb 27, 2023Root Causes 281: Google Proposes Optional OCSP
Google has proposed removing the requirement for OCSP revocation checking for public SSL certificates meeting certain specific conditions.
-
Listen Now
EPISODE 280
Broadcast Date:
February 24, 202320 minutes
Podcast Feb 24, 2023Root Causes 280: Did an AI Break CRYSTALS-Kyber?
Recent news reports might suggest that an AI-enhanced side attack has defeated the CRYSTALS-Kyber PQC algorithm.
-
Listen Now
EPISODE 279
Broadcast Date:
February 20, 202316 minutes
Podcast Feb 20, 2023Root Causes 279: ChatGPT Watermarking
In this episode we discuss the idea of "watermarking" ChatGPT content, including stenography, randomness, entropy, and how to destroy the watermarks.
-
Listen Now
EPISODE 278
Broadcast Date:
February 17, 202311 minutes
Podcast Feb 17, 2023Root Causes 278: Microsoft on Certificates and FIDO
Recent public discussion of FIDO and digital certificates reveal details of Microsoft's approach to consumer digital authentication.
-
Listen Now
EPISODE 277
Broadcast Date:
February 13, 202315 minutes
Podcast Feb 13, 2023Root Causes 277: Privacy Sandbox
Google has announced the Privacy Sandbox. In this episode we describe concepts like k-anonymity and differential privacy.
-
Listen Now
EPISODE 276
Broadcast Date:
February 9, 20238 minutes
Podcast Feb 09, 2023Root Causes 276: ChatGPT and Identity Reputation
People may use ChatGPT for reputation analysis, KYC, and other info about individuals and companies. This is subject to error and deliberate misdirection.
-
Listen Now
EPISODE 275
Broadcast Date:
February 6, 20238 minutes
Podcast Feb 06, 2023Root Causes 275: No Fly List Stolen
An attacker gained a copy of the full 2019 TSA No Fly list, including subject PII, all enabled by failures in digital identity and encryption.