-
Download Now
Using PKI to Ensure Digital Security in Healthcare and Life Sciences
Whitepaper from Sectigo
Whitepaper Sep 06, 2019This white paper details how the most popular PKI capabilities can help protect HLS companies, including PII, intellectual property, and devices.
-
Download Now
Using PKI to Ensure Digital Security in the Financial Sector
Whitepaper from Sectigo
Whitepaper Sep 06, 2019This white paper explains why PKI is the best choice for establishing identity for every device, server, user, and application in the financial enterprise.
-
Blog Post Sep 03, 2019
Sectigo Votes in Favor of One-Year SSL Certificate Term Limit
After careful consideration, Sectigo has decided to vote in favor of CA/Browser Forum (CABF) ballot SC22, which seeks to limit the allowed duration of TLS / SSL certificates to 397 days, or about thirteen months. It is a complex issue with pros and cons for both outcomes. This post will spell out our reasons for voting as we have.
-
Blog Post Aug 26, 2019
Mozilla Should Reconsider Removing the EV Green Address Bar
The week before last, very quickly and without advance warning, Mozilla announced that it would remove the Extended Validation SSL certificate indicator from its upcoming build 70. This announcement spawned a very lively debate that is still going on. Below is my response to the thread, explaining why I believe it to be ill- considered and detrimental to overall internet security. Jason Soroko and I also covered Mozilla's decision to remove the EV SSL indicator in our Root Causes PKI and security podcast series.
-
Press Release Aug 22, 2019
Sectigo Sponsors Certificate Automation in EFF Certbot Software Tool
Sectigo announced its sponsorship of Electronic Frontier Foundation’s (EFF) free, open-source software tool, Certbot, to support efforts to encrypt the entire internet and build a network that is more structurally private, safe, and protected against censorship.
-
News Article Aug 21, 2019
Google and Mozilla Block Kazakhstan Internet Surveillance
In July, reports emerged that internet service providers in Kazakhstan were instructing people to install government-issued certificates across their devices and the browsers, or risk losing internet access. Sectigo's Tim Callan comments.
-
Download Now
Sectigo Automation
Datasheet from Sectigo
Datasheet Aug 19, 2019Automation is critical to any certificate management system. It enforces cryptographic compliance and prevents service disruptions caused by human error.
-
Listen Now
EPISODE 33
Broadcast Date:
August 18, 201917 minutes
Podcast Aug 18, 2019Root Causes 33: Prepare for One-Year Limits on SSL Certificates
A proposed CA/Browser Forum ballot stands to limit SSL certificates to 13 months. Learn what such a change might mean to IT professionals everywhere.
-
Listen Now
EPISODE 32
Broadcast Date:
August 15, 201925 minutes
Podcast Aug 15, 2019Root Causes 32: Why Do Browsers & Academics Say Differently About EV?
Research shows that sites with Extended Validation SSL certificates are less likely for malware and phishing. So why do browsers say it isn't effective?
-
Blog Post Aug 14, 2019
Be Prepared for One-Year SSL Certificate Duration
A recent CA/Browser Forum ballot sponsored by Google stands to limit SSL certificate lifespans to 397 days starting in March 2020. Should this pass, organizations using two-year SSL certificates will need to change their practices to only one-year certificates moving forward. Fortunately, automation options are available.
-
Listen Now
EPISODE 30
Broadcast Date:
August 6, 201917 minutes
Podcast Aug 06, 2019Root Causes 30: When a Whole Country Has Its PII Stolen
Recently we have seen major news items in some of the common Root Causes themes. Join our hosts as they discuss.
-
News Article Aug 01, 2019
Probability That an EV SSL Certificate Is Associated with a Bad...
New research conducted by the Georgia Institute of Technology Cyber Forensics Innovation (CyFI) Laboratory confirms that a website with a company-branded address bar greatly decreases the chance of internet users falling victim to a malware attack or phishing scam.
