certificate authorities – WindowsTechs.com

Threats to ICS and industrial enterprises in 2022

Posted on November 23, 2021 by Evgeny Goncharov

In recent years, we have observed various trends in the changing threat landscape for industrial enterprises. We can say with high confidence that many of these trends will not only continue, but gain new traction in the coming year. Continue reading Threats to ICS and industrial enterprises in 2022→

Dell BIOSConnect Flaws Show Over-the-Air Risks

Posted on June 25, 2021 by Teri Robinson

Because tech vendors have turned to over-the-air updates – the idea is to not give their customers any excuses for not keeping firmware current – Eclypsium’s discovery of a chain of four vulnerabilities in the BIOSConnect feature within Dell Client BI… Continue reading Dell BIOSConnect Flaws Show Over-the-Air Risks→

What Is a Certificate Authority (CA) and What Do They Do?

Posted on August 11, 2020 by Casey Crane

Every time you visit a website that starts with HTTPS, you’re using a certificate authority. But what exactly is a CA and how does it make your transactions and communications more secure? Let’s hash it out.
The post What Is a Certificate Author… Continue reading What Is a Certificate Authority (CA) and What Do They Do?→

Apple chops Safari’s TLS certificate validity down to one year

Posted on February 24, 2020 by John E Dunn

From 1 September 2020, Safari will no longer trust SSL/TLS certificates with more than a year on the clock. Continue reading Apple chops Safari’s TLS certificate validity down to one year→

PKI Deployment: The Top 10 Definitive Answers

Posted on January 17, 2019 by Mark B. Cooper

If there’s one thing I know, it’s public key infrastructure (PKI). PKI enables a trusted environment by authenticating, encrypting and ensuring the integrity of data and users. PKI is more important than ever, as organizations are doing a less-than-st… Continue reading PKI Deployment: The Top 10 Definitive Answers→

Max Age For SSL/TLS Certificates Now Two Years

Posted on August 20, 2018 by Jason Wood

This post was authored by Jason Wood, founder of Paladin Security, a host on Security Weekly and commentator on Hack Naked News. This post is sponsored by DigiCert. Ah, the easy, old days when you could buy an SSL/TLS certificate that was valid for up … Continue reading Max Age For SSL/TLS Certificates Now Two Years→

Google drops the boom on WoSign, StartCom certs for good

Posted on July 20, 2017 by Sean Gallagher

Citing “certificate misissuance,” Google to expire all certs from offenders by September. Continue reading Google drops the boom on WoSign, StartCom certs for good→

Google to Fully Distrust WoSign/StartCom SSL Certs in Chrome 61

Posted on July 10, 2017 by Michael Mimoso

Google has put websites signed with WoSign/StartCom SSL certificates on notice that it will no longer trust certs from the Chinese CA starting in Chrome 61. Continue reading Google to Fully Distrust WoSign/StartCom SSL Certs in Chrome 61→

HTTPS Certificate Revocation is broken, and it’s time for some new tools

Posted on July 3, 2017 by Ars Staff

Certificate Transparency and OCSP Must-Staple can’t get here fast enough. Continue reading HTTPS Certificate Revocation is broken, and it’s time for some new tools→

Chrome Security Team Tackles ‘Friendly Fire’ To Keep Browser Safe

Posted on April 6, 2017 by Tom Spring

Justin Schuh, lead engineer of Chrome Security, said ensuring browser security for Chrome users is a balancing act juggling OEM pressures, questionable certificate authorities and quashing third-party software incompatibility issues. Continue reading Chrome Security Team Tackles ‘Friendly Fire’ To Keep Browser Safe→