How to Avoid COVID-19 Cyberattacks

Hackers will take advantage of any vulnerability they can find. Amidst the pandemic of COVID-19, attackers are taking advantage of the alertness of the world population with phishing emails, social media posts, apps and text messages containing malware. These scams typically involve fraudsters impersonating healthcare officials. According to Check Point Threat Intelligence, “since January 2020, […]

Nine Tips to Securely Work from Home During Coronavirus

Even before the coronavirus outbreak, employees were increasingly working from home. According to the Federal Reserve, the percentage of the labor force working from home tripled in the last 15 years. However, since the World Health Organization declared COVID-19 a pandemic, many companies are asking their employees to work from home. As more people log […]

Position on 1-Year Certificates

Three, Two, One, Liftoff on One-Year TLS Certificates At the CA/Browser (CA/B) Forum in Bratislava, Slovakia, this week, Apple announced that beginning Sept. 1, newly issued publicly trusted TLS certificates are valid for no longer than 398 days. This followed a long history of the CA/B Forum community working to reduce certificate lifetimes and improve […]

Potential enhancements to EV standards

Many leading companies look to EV to protect their own systems and brand by adhering to the industry’s strongest requirements for identity verification and assurance. In discussions with these companies, DigiCert has found continued interest in our work to strengthen EV as a way to help them protect their users and strengthen their brand promise. […]

Posted in SSL

New CA/B Forum Proposal to Shorten Certificate Lifetimes: Will It Improve Security?

A new CA/Browser Forum proposal being discussed now would shorten maximum certificate lifetimes to 13 months. This comes after lifetimes were reduced from 39 to 27 months, effective March 2018. If passed, these changes would go into effect in March 2020. This blog analyzes the merits of this proposal and how the proposed security benefit […]

How to Improve your Organization’s Crypto-Agility

As the sheer number of connected devices continues to rise and technology continues to develop toward a future full of quantum computers, securing devices/applications and becoming “crypto agile” is fundamental to an organization’s effort to become and stay secure, today and in the future. Read on to discover how to improve your organization’s crypto-agility. A […]

Encryption and decryption – the never-ending battle

Ciphers have been used to encrypt and decrypt sensitive date since 3,000 B.C. However, their importance and relevance for day-to-day information security became important with the expansion of the internet and the escalating volumes of sensitive data exchanged online every day. The history of ciphers and encryption is a compelling one. It has included a […]

New Code Signing Working Group Chartered Due to Regulation Changes in CA/Browser Forum

With changes to the governance regulations in the CA/Browser Forum, a new Code Signing Working Group was officially chartered in March 2019. The working group is composed of Certificate Authorities and certificate consumers (operating systems that consume these certificates), and its main goal is to set standards related to the issuance and management of code […]

DigiCert on Quantum 2: When Will Cryptographically Relevant Quantum Computers Arrive?

[This is part of a continuing series on quantum computing. For the first part, click here.] Once people understand the threat that quantum computers pose to classical cryptographic algorithms like RSA and ECC, the next question that always gets asked is: when is it likely that such a computer will be available? This was one […]