standards
7 Tips That Will Help Protect Your Website Guests' Data With SSL Certificate
7 Tips That Will Help Protect Your Website Guests' Data With SSL Certificate
PCI's Required TLS Update for Compliant Sites Is Rapidly Approaching
In 2015 the PCI Security Standards Council set a June 30, 2018 deadline for entities accepting credit card payments to deprecate support for all versions of SSL/TLS prior to TLS 1.1 . The reasons for this requirement are a variety of security vulnerabilities (including certain flavors of man-in-the-middle and downgrade ...
Certificate Authority Authorization (CAA) Records in DNS
One relatively new certificate management capability that many site administrators don't know about is the ability to specify which CAs are allowed to issue certificates for the domains you control. This capability is called Certificate Authority Authorization, or CAA, and it's accomplished using DNS records. Here's how it works. Your ...
How Does SSL Fit into GDPR?
GDPR (General Data Protection Regulation) is a broad-reaching regulation meant to protect the private data of Europeans in personal systems. The 99-article regulation is very long and covers a broad variety of topics. Announced in 2017, GDPR will go into effect as a requirement on May 25, 2018. GDPR applies ...
TLS 1.3 Is Here
TLS (Transport Layer Security) is the official name of the standard used by computer systems that is commonly referred to as SSL. Though once upon a time the SSL (Secured Sockets Layer) standard governed secure online connections, SSL was surpassed by the TLS standard in 1999. Out of convenience and ...
What Is the CA/Browser Forum and Why Should I Care?
Regular readers of this blog will occasionally see references to the CA/Browser Forum. Today we will talk about what the CA/Browser Forum is and why it matters to you. The CA/Browser Forum (CA/B Forum) is an independent body that establishes standards for the practices that digital certificate authorities will follow ...
Where Did All the Three-year SSL Certificates Go?
For many years our customers have found multi-year certificates to be beneficial for both cost and convenience. In particular, site administrators value multi-year certificates because they reduce the amount of administrative overhead required for certificate management. (Less frequent expiration means less certificate management, less frequent key generation, and fewer potential ...