All posts tagged with

CA/B Forum

New S/MIME Standards Go Into Effect in September 2023

(5 votes, average: 4.60 out of 5)

in Beyond Hashed Out, Featured Posts, Industry Lowdown Read more

February 8, 2023 0

New S/MIME Standards Go Into Effect in September 2023

In January, industry leaders adopted new S/MIME Baseline Requirements that aim to increase consistency regarding how publicly trusted email signing certificates are issued and managed globally. Here are the key…

CAs to Deprecate OU Info from Digital Certificates Starting July 1

(2 votes, average: 5.00 out of 5)

in Industry Lowdown Read more

January 24, 2022 Comments closed

CAs to Deprecate OU Info from Digital Certificates Starting July 1

The CA/B Forum has decided that CAs no longer need to include organizational unit (OU) information when issuing publicly trusted SSL/TLS digital certificates. Let’s quickly explore what this means for…

SSL Certificates: One Year Max Validity Ballot fails at the CA/B Forum

(No Ratings Yet)

in Industry Lowdown, Monthly Digest Read more

September 11, 2019 6

SSL Certificates: One Year Max Validity Ballot fails at the CA/B Forum

Ballot SC 22’s failure highlights the dysfunction at the CA/Browser Forum. For now, at least, SSL/TLS certificates will still have a maximum validity period of two years (or 27 months)….

Why all the fuss about 64-bit serial numbers?

(No Ratings Yet)

in Industry Lowdown Read more

March 21, 2019 1

Why all the fuss about 64-bit serial numbers?

Unpacking the serial number fiasco playing out in the digital certificate industry Last week, we discussed a developing situation where several major companies had to mass revoke millions of mis-issued…

CAB Forum bans WHOIS, Legal Opinions for Domain Validation

(No Ratings Yet)

in Industry Lowdown Read more

August 6, 2018 2

CAB Forum bans WHOIS, Legal Opinions for Domain Validation

Two recent updates to the baseline requirements will strengthen domain validation On August 1, a couple of new changes to the baseline requirements that govern the issuance of digital certificates…

Should the Browser Community Distrust PROCERT?

(No Ratings Yet)

in Industry Lowdown Read more

September 5, 2017 Comments closed

Should the Browser Community Distrust PROCERT?

The Venezuelan CA is facing myriad issues, and its response isn’t promising. Ever heard of PROCERT? If not, I don’t blame you. Until last month, I had not heard of…

How Reduced SSL Certificate Lifetimes Will Affect You

(No Ratings Yet)

in Industry Lowdown Read more

April 24, 2017 Comments closed

How Reduced SSL Certificate Lifetimes Will Affect You

3-year Certificates Are Being Phased out as the industry embraces reduced SSL certificate lifetimes. Last month the CAB Forum approved Ballot 193, which will see reduced SSL certificate lifetimes, as the…

CAB Forum Voting: Microsoft’s Tie-Breaking Vote Was Likely Invalid

(No Ratings Yet)

in Industry Lowdown Read more

April 17, 2017 Comments closed

CAB Forum Voting: Microsoft’s Tie-Breaking Vote Was Likely Invalid

CAB Forum Voting is being held up as a small vote turns into a big issue. A recent Ballot from the CAB Forum is under contention due to procedural errors…

CAA Checking Will Become Mandatory Later This Year

(No Ratings Yet)

in Industry Lowdown Read more

April 10, 2017 Comments closed

CAA Checking Will Become Mandatory Later This Year

Certificate Authority Authorization Protects Domain Owners From Mis-Issuance. Starting soon, new rules will make CAA checking mandatory. Certificate Authority Authorization (CAA) is an optional security measure that website operators can…

SSL Certificates Will Now Be Capped At Two Years of Validity

(No Ratings Yet)

in Industry Lowdown Read more

March 17, 2017 1

SSL Certificates Will Now Be Capped At Two Years of Validity

The New Maximum SSL Certificate Validity Will Take Effect in 2018. CAB Forum Ballot 193 has passed, this means a new, shorter, maximum SSL certificate validity period. The CAB Forum…

How to Fix ‘ERR_SSL_PROTOCOL_ERROR’ on Google Chrome

5 Ways to Determine if a Website is Fake, Fraudulent, or a Scam – 2018

Re-Hashed: How to clear HSTS settings in Chrome and Firefox

Re-Hashed: How to Fix SSL Connection Errors on Android Phones

Re-Hashed: The Difference Between SHA-1, SHA-2 and SHA-256 Hash Algorithms

Re-Hashed: Troubleshoot Firefox’s “Performing TLS Handshake” Message

How to fix the SSL_ERROR_RX_RECORD_TOO_LONG Firefox Error

The Difference Between Root Certificates and Intermediate Certificates

The difference between Encryption, Hashing and Salting

Rehash: How to Fix the SSL/TLS Handshake Failed Error

How to Remove a Root Certificate

How strong is 256-bit Encryption?

This is what happens when your SSL certificate expires

The 25 Best Cyber Security Books — Recommendations from the Experts

Browser Watch: SSL/Security Changes in Chrome 58

Cipher Suites: Ciphers, Algorithms and Negotiating Security Settings

Re-Hashed: How to Trust Manually Installed Root Certificates in iOS 10.3

Taking a Closer Look at the SSL/TLS Handshake

Executing a Man-in-the-Middle Attack in just 15 Minutes

How to View SSL Certificate Details in Chrome 56

Code Signing Price Changes as CAs Align With New Industry Standards

5 Key PKI Takeaways From the U.S.’s National Cybersecurity Strategy (2023)

Is HTTPS Secure? A Look at How Secure HTTPS Is

Hello? Is That a Cybercriminal? A Look at Vishing Attacks

What Is a Message Authentication Code (MAC)?

A Pentester’s Guide to Strengthening Your Cloud Security Defenses

New S/MIME Standards Go Into Effect in September 2023

The Rise of Zero Trust: Threats Are No Longer Perimeter-Only Concerns

The Definitive Cyber Security Statistics Guide [2023 Edition]

12 Social Engineering Statistics That Will Make You Question Everything

What Is HTTPS? A 5-Minute Overview of What HTTPS Stands For

SD-WAN: How to Use It to Transform Your Digital Networks

A Practical Guide to Software Supply Chain Security [10 Tips]

What Is Encryption? A 5-Minute Overview of Everything Encryption

SBOM: An Up-Close Look at a Software Bill of Materials

Digital Signature vs Digital Certificate: A Quick Guide

HTTP vs HTTPS: What’s the Difference Between the HTTP and HTTPS Protocols?

5 Examples of When to Use a Digital Signature Certificate

OpenSSL Issues Update to Fix Formerly ‘Critical’ Vulnerability Nov. 1

What Is Brand Impersonation? A Look at Mass Brand Impersonation Attacks

5 Ways to Determine if a Website is Fake, Fraudulent, or a Scam – 2018

How to Fix ‘ERR_SSL_PROTOCOL_ERROR’ on Google Chrome

Re-Hashed: How to Fix SSL Connection Errors on Android Phones

Cloud Security: 5 Serious Emerging Cloud Computing Threats to Avoid

This is what happens when your SSL certificate expires

Re-Hashed: Troubleshoot Firefox’s “Performing TLS Handshake” Message

Report it Right: AMCA got hacked – Not Quest and LabCorp

Re-Hashed: How to clear HSTS settings in Chrome and Firefox

Re-Hashed: The Difference Between SHA-1, SHA-2 and SHA-256 Hash Algorithms

The Difference Between Root Certificates and Intermediate Certificates

The difference between Encryption, Hashing and Salting

Re-Hashed: How To Disable Firefox Insecure Password Warnings

Cipher Suites: Ciphers, Algorithms and Negotiating Security Settings

The Ultimate Hacker Movies List for December 2020

Anatomy of a Scam: Work from home for Amazon

The Top 9 Cyber Security Threats That Will Ruin Your Day

How strong is 256-bit Encryption?

Re-Hashed: How to Trust Manually Installed Root Certificates in iOS 10.3

How to View SSL Certificate Details in Chrome 56

PayPal Phishing Certificates Far More Prevalent Than Previously Thought

CA/B Forum