-
Listen Now
EPISODE 304
Broadcast Date:
May 19, 202314 minutes
Podcast May 19, 2023Root Causes 304: Your 90-day SSL Certificates Checklist
90-day maximum term for SSL certificates is coming. An expert details his 4-point checklist for preparing enterprises for these shorter-lived certificates.
-
Listen Now
EPISODE 300
Broadcast Date:
May 5, 202319 minutes
Podcast May 05, 2023Root Causes 300: Chrome Eliminates the Lock Icon
Google Chrome has announced that it will eliminate the lock icon in September. We explain what Google will be doing, and its stated rationale.
-
Listen Now
EPISODE 296
Broadcast Date:
April 21, 202313 minutes
Podcast Apr 21, 2023Root Causes 296: SHOULD We or MUST We?
The CA/Browser Forum guidelines contain many prescribed requirements with the word SHOULD or MUST. We explain how these two words are used.
-
Learn More
Q&A on 90 Day Certificates. You asked – Sectigo Responds!
A Blog Post from Sectigo
Blog Post Apr 17, 2023The topic of short-lived 90-day certificates is a major one for the cybersecurity industry.
-
Listen Now
EPISODE 293
Broadcast Date:
April 10, 202313 minutes
Podcast Apr 10, 2023Root Causes 293: What Is Certbot?
This important part of the ACME standard that makes it easier for many IT administrators to use ACME to automate provisioning of SSL / TLS certificates.
-
Listen Now
EPISODE 292
Broadcast Date:
April 6, 202315 minutes
Podcast Apr 06, 2023Root Causes 292: Validation Data Reuse for 90-day Certificates
With 90-day maximum term for SSL / TLS certificates, what will happen to thethe validation data reuse period? We investigate.
-
Listen Now
EPISODE 287
Broadcast Date:
March 21, 202314 minutes
Podcast Mar 21, 2023Root Causes 287: GoDaddy Private Key Breach
A GoDaddy breach exposed customer private keys. We explain expectations surrounding private key exposure.
-
Listen Now
EPISODE 284
Broadcast Date:
March 10, 202324 minutes
Podcast Mar 10, 2023Root Causes 284: 90-day SSL Certificates Are on the Way
The Google Chrome root program recently announced its intention to reduce the maximum term for public SSL certificates to 90 days.
-
Listen Now
EPISODE 283
Broadcast Date:
March 6, 202311 minutes
Podcast Mar 06, 2023Root Causes 283: Google Optional OCSP Proposal Clarified
In our episode 281 we reported on Google's proposal for optional OCSP. In this episode we correct some of our earlier reporting in that episode.
-
Listen Now
EPISODE 281
Broadcast Date:
February 27, 202326 minutes
Podcast Feb 27, 2023Root Causes 281: Google Proposes Optional OCSP
Google has proposed removing the requirement for OCSP revocation checking for public SSL certificates meeting certain specific conditions.
-
Listen Now
EPISODE 272
Broadcast Date:
January 27, 202312 minutes
Podcast Jan 27, 2023Root Causes 272: OCSP's Privacy Problem
Concerns recently have been raised about OCSP real-time certificate checking and its potential to violate privacy.
-
Listen Now
EPISODE 270
Broadcast Date:
January 20, 202312 minutes
Podcast Jan 20, 2023Root Causes 270: What Is the Difference Between KEM and PKE?
We explain the difference between Public Key Exchange (PKE) and Key Encapsulation Methods (KEM) and why we're moving from one to another.