SSL Review: October 2020

November 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Chrome Root Program and…

SSL Review: September 2020

October 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust TLS Protocol 1.2…

TLS Protocol 1.2 Vulnerable to Raccoon Attack

September 2020 by Bruce Morton

Recently, a team of researchers discovered a vulnerability with all versions of the SSL and TLS 1.2 and prior protocols…

SSL Review: August 2020

September 2020 by Bruce Morton

Entrust’s monthly SSL review covers SSL/TLS discussions – recaps news, trends, and opinions from the industry. 398-Day Certificate Validity Apple…

SSL Review: July 2020

August 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Why Google’s…

SSL Review: June 2020

July 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard Frost…

SSL Review: April and May 2020

June 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions – recaps news, trends, and opinions from the industry. Entrust Datacard Best…

SSL Review: March 2020

April 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers TLS/SSL discussions – recaps news, trends and opinions from the industry. Apple on 398-day…

SSL Review: February 2020

March 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions – recaps news, trends and opinions from the industry. Entrust Datacard Apple…

Apple Announces 398-day Maximum Certificate Lifetime

February 2020 by Bruce Morton

At the 49th meeting of the CA/Browser Forum held in February 2020, Apple announced that they are changing their root…

SSL Review: January 2020

February 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. CA Security Council…

SSL Review: December 2019

January 2020 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard The…

SSL Review: November 2019

December 2019 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard Chrome…

Chrome Kills Mixed Content for HTTPS

November 2019 by Bruce Morton

In a phased approach, Chrome plans to block mixed content on secure websites to improve user security. Most browsers already block…

SSL Review: October 2019

November 2019 by Bruce Morton

CASC Paul Walsh provides a great blog about The Insecure Elephant in the Room and browser based UI Patrick Nohe hashes out Online…

SSL Review: September 2019

October 2019 by Bruce Morton

Entrust Datacard The Value of EV Certificates Remains Regardless of Changes to the EV Indicator in Major Browsers Shortening Validity…

SSL Review: August 2019

September 2019 by Bruce Morton

CASC … 9 Common Myths About CAs Shortening Validity Period of SSL/TLS Certificates … Web body mulls halving HTTPS cert…

SSL Review: July 2019

August 2019 by Bruce Morton

CASC The Advantages of Short-Lived SSL Certificates for the Enterprise Bulletproof TLS Newsletter #55 Kazakhstan intercepts TLS traffic Hashedout provides input…

SSL Review: June 2019

July 2019 by Bruce Morton

CASC What the Latest Firefox Update Means for SSL Certificates What Are Subordinate CAs and Why Would You Want Your…

SSL Review: May 2019

June 2019 by Bruce Morton

The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry….

SSL vs. TLS

May 2019 by Bruce Morton

Several years ago, I wrote “Is it SSL, TLS or HTTPS?” This was a simple blog to talk about the…

SSL Review: April 2019

May 2019 by Bruce Morton

The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry….

SSL Review: March 2019

April 2019 by Bruce Morton

The Entrust Datacard monthly SSL review covers SSL/TLS discussions with a recap of news, trends and opinions from the industry….

SSL Review: February 2019

March 2019 by Bruce Morton

Entrust Datacard provides information on TLS 1.3 and phone domain name validation methods: TLS 1.3, Less is More Phone Domain Name…

What’s the Difference Between a Public and Private Trust Certificate...

March 2019 by Bruce Morton

Public and private trust certificates are types of SSL/TLS certificates that are formatted to suit different use cases. Entrust Datacard…

IP Address Validation Used for Issuing SSL/TLS Certificates

March 2019 by Bruce Morton

The CA/Browser Forum continues to update the validation methods used for issuing SSL/TLS certificates to improve security. The latest, Ballot 7,…

Phone Domain Name Validation for SSL Certificates

February 2019 by Bruce Morton

The CA/Browser Forum continues to improve domain name validation for SSL/TLS certificates. Following new methods to verify domain names using emails…

SSL Review: January 2019

February 2019 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Datacard ……

TLS 1.3, Less is More

February 2019 by Bruce Morton

Increases in both performance and security are what can be expected as TLS 1.3 takes a less is more approach…

Introducing Domain Name Validation Method 13

January 2019 by Bruce Morton

In 2018, the CA/Browser Forum held a domain validation summit to the review the approved domain validation methods. The meeting covered…

Removal of Underscores from Domain Names

January 2019 by Bruce Morton

In November 2018, the CA Browser Forum voted to sunset the use of underscore characters in the domain names of SSL/TLS…

SSL Review: December 2018

January 2019 by Bruce Morton

Entrust Datacard’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. CA Security Council……

2019 – Looking Back, Moving Forward

January 2019 by Bruce Morton

Looking Back at 2018 2018 was an active year for SSL/TLS. We saw the SSL/TLS certificate validity period drop to…

What Does Your CAA Say?

January 2019 by Bruce Morton

Certification Authority Authorization (CAA) is a method for a domain owner to permit one or more certification authorities (CAs) to…

Major Browsers Coordinated on Deprecating TLS 1.0 and 1.1

November 2018 by Bruce Morton

In an unprecedented move for the SSL/TLS ecosystem, the four major browsers have uniformly announced that they will deprecate TLS…

Domain Validation – Where are We Now?

August 2018 by Bruce Morton

Public trust SSL/TLS certificates assert an association between a domain name and a public key. The domain name may be…

Chrome Will Show Not Secure for all HTTP Sites Starting July 2018

March 2018 by Bruce Morton

Through 2017 and into 2018, we have seen the use of HTTPS grow substantially. Last Fall Google announced the following…

Grade Changes to the SSL Server Test – Coming March 2018

February 2018 by Bruce Morton

Entrust Datacard supports SSL Server Testing as part of our best practices approach to certificate management. This free, web-based service tests server…

Chrome Requires CT after April 2018

February 2018 by Bruce Morton

The Internet ecosystem has been working towards Chrome’s requirement for certificate transparency (CT) for all SSL/TLS certificates in April 2018….

ROBOT Attack on RSA Encryption

December 2017 by Bruce Morton

The Return Of Bleichenbacher’s Oracle Threat (ROBOT) attack takes advantage of an old vulnerability discovered by Daniel Bleichenbacher in 1998. We have previously seen…

How Can I Protect My Brand TLD?

November 2017 by Bruce Morton

Originally, there were just seven generic top level domains (gTLDs) and a couple hundred country code TLDs (ccTLDs). In 2012, ICANN announced…

OCSP Must-Staple

June 2014 by Bruce Morton

This post was originally published by on the CA Security Council blog. With the announcement of the Heartbleed bug and the…

  • Sort by

  • Topic

More Blog Topics