-
Blog Post Sep 03, 2019
Sectigo Votes in Favor of One-Year SSL Certificate Term Limit
After careful consideration, Sectigo has decided to vote in favor of CA/Browser Forum (CABF) ballot SC22, which seeks to limit the allowed duration of TLS / SSL certificates to 397 days, or about thirteen months. It is a complex issue with pros and cons for both outcomes. This post will spell out our reasons for voting as we have.
-
Learn More
Cyber Insurance Claims Double as BEC Overtakes Ransomware
News Article from Sectigo
News Article Sep 03, 2019An AIG report says that a quarter of reported incidents in 2018 were due to business email compromise (BEC), up from 11 percent in 2017. Sectigo's Tim Callan comments here about the skyrocketing number of email attacks.
-
Listen Now
EPISODE 36
Broadcast Date:
September 3, 201921 minutes
Podcast Sep 03, 2019Root Causes 36: The Search for Quantum Resistant Crypto
Finding new quantum-resistant cryptography is a difficult task requiring coordinated effort. Join us to learn how NIST is leading this effort.
-
Blog Post Aug 28, 2019
Sectigo Welcomes CertCenter to Our HQ
Last week, representatives of CertCenter AG, namely Andreas Mallek (CEO), Carsten Müller(CEO) and Federico Reimers (Head of Marketing and Sales), traveled from Germany to meet with us at our headquarters in New Jersey. The representatives came to provide our management team with a closer look at the DACH market.
-
Listen Now
EPISODE 35
Broadcast Date:
August 28, 201920 minutes
Podcast Aug 28, 2019Root Causes 35: Quantum Apocalypse - Mosca's Inequality and Mad Max
Our hosts discuss how long we have until quantum computers defeat today's encryption algorithms and what happens if our cryptography isn't updated in time.
-
Learn More
How PKI & Embedded Security Can Help Stop Aircraft Cyberattacks
Blog Post from Sectigo
Blog Post Aug 27, 2019On July 30, the U.S. Department of Homeland Security's CISA issued a security alert warning aircraft owners about vulnerabilities to alter the telemetry.
-
News Article Aug 27, 2019
Securing the IoT with a Purpose-Built IoT Issuance
One of the companies creating solutions for the space, Sectigo, acquired Icon Labs, a maker of cross-platform security solutions for embedded OEMs and IoT device manufacturers. Alan Grau, the VP of IoT, Embedded Systems at Sectigo, talks about the company’s plans.
-
Press Release Aug 27, 2019
Sectigo CTO of IoT Featured in ReadWrite Lab’s Security Masterclass
Sectigo’s Jason Soroko will discuss the evolving IoT security landscape during a live online ReadWrite Labs Masterclass Aug 29th @ noon EDT. “Hard Lessons from Past IoT Attacks & the Future of Device Security,” will ID patterns and commonalities from real-world attacks and detail successful IoT security architectures.
-
Blog Post Aug 26, 2019
Mozilla Should Reconsider Removing the EV Green Address Bar
The week before last, very quickly and without advance warning, Mozilla announced that it would remove the Extended Validation SSL certificate indicator from its upcoming build 70. This announcement spawned a very lively debate that is still going on. Below is my response to the thread, explaining why I believe it to be ill- considered and detrimental to overall internet security. Jason Soroko and I also covered Mozilla's decision to remove the EV SSL indicator in our Root Causes PKI and security podcast series.
-
Listen Now
EPISODE 34
Broadcast Date:
August 25, 201923 minutes
Podcast Aug 25, 2019Root Causes 34: Shadow IT and PKI
Shadow IT has become a fact of the modern enterprise. This fragmentation leads to identity and access challenges, which we discuss in this episode.
-
Press Release Aug 22, 2019
Sectigo Sponsors Certificate Automation in EFF Certbot Software Tool
Sectigo announced its sponsorship of Electronic Frontier Foundation’s (EFF) free, open-source software tool, Certbot, to support efforts to encrypt the entire internet and build a network that is more structurally private, safe, and protected against censorship.
-
News Article Aug 21, 2019
Google and Mozilla Block Kazakhstan Internet Surveillance
In July, reports emerged that internet service providers in Kazakhstan were instructing people to install government-issued certificates across their devices and the browsers, or risk losing internet access. Sectigo's Tim Callan comments.
