SSL Resources

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

How to Install an SSL/TLS Certificate In Tomcat

The following instructions will guide you through the SSL installation process on Tomcat. If you have more than one server or device, you will need to install the certificate on each server or device you need to secure. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions and disregard the steps below.

What You’ll Need

1. You

Read More
Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

How to Generate a CSR for Microsoft IIS 7

The following instructions will guide you through the CSR generation process on Microsoft IIS 7. To learn more about CSRs and the importance of your private key, reference our Overview of Certificate Signing Request article. If you already generated the CSR and received your trusted SSL certificate, reference our SSL Installation Instructions and disregard the steps below.

1. Open Internet Infor

Read More
Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

Does PCI DSS Require PCI Penetration Testing?

In one word? Yes. Requirement 11.3.4.1 of the Payment Card Industry Data Security Standard (PCI DSS) does mandate penetration testing — but not for everyone. In this article, we’ll discuss penetration testing and who is required by PCI DSS to perform it.

What is PCI Penetration Testing?

PCI DSS penetration testing a method for finding internal and external vulnerabilities on a network. This differs … Read More

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

Sectigo: The Most Cost-Effective PCI Approved Scanning Vendor

Perhaps the most oft-misunderstood Payment Card Industry Data Security Standard (PCI DSS) requirement is number 11: the vulnerability scanning requirement. Requirement 11 is all about scanning — what to scan, when to scan, how to scan, and whom to report the scan results to. Fun stuff like that. And knowing where to find an approved scanning vendor is a huge part of that.

Fortunately, there’s an ea… Read More

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

How to Run a PCI DSS External Vulnerability Scan

The Payment Card Industry Data Security Standards (PCI DSS) mandates that all organizations, regardless of size or level, must perform quarterly ASV scans.

What does all of this mean? It entails:

  • going through an approved PCI ASV scanning vendor,
  • running both internal and external vulnerability scans, and
  • submitting reports to your acquiring bank.

All of this can be a considerable headache if you d… Read More

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

How to Run a PCI Internal Vulnerability Scan

The Payment Card Industry Data Security Standards (PCI DSS) are extremely clear about their vulnerability scanning requirements — both for a PCI internal vulnerability scan and an external one. Any organization that accepts payment card is required to scan its network regularly. Specifically, that means that they need to:

  • Scan quarterly;
  • Use an approved PCI ASV scanning vendor;
  • Scan internally and ext
Read More
Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

Who’s the Best ASV Vendor for PCI Scanning?

Not only does PCI DSS require quarterly vulnerability scans (and reports), it also requires you to work with an ASV vendor, or what’s known as an “approved scanning vendor” or “ASV vulnerability scan vendor.” In the industry, there are many PCI ASV vendors competing for business. And that begs the question, what’s the best ASV scanning vendor to work with?

Easy. It’s Sectigo.

Look, we could try to ma… Read More

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

How to Run a PCI Vulnerability Scan for PCI Compliance

The Payment Card Industry Data Security Standard (PCI DSS) requirement — number 11 — that mandates quarterly ASV scans for vulnerabilities is one of the most cringed-about requirements of any compliance framework anywhere. Yes, the dreaded PCI vulnerability scan. The word “scan” gives companies fits. That’s silly, because as you’re about to see, scanning is simple.

Sectigo is a PCI-approved scanning Read More

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

ASV Pricing: How Much Does a PCI ASV Scan Cost?

We all know that vulnerability scanning is a Payment Card Industry Data Security Standard (PCI DSS) requirement. Every organization that accepts payment cards, regardless of size, is required to perform quarterly ASV scans — both internal and external — using a product or approved scanning vendor (ASV). And while that sounds like an onerous requirement, we’re about to show you that it’s really not. … Read More

Rate this article: 1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00)
Loading...

Types of SSL Certificates — The Ultimate Guide

Get a breakdown of the different types of SSL certificates that enable secure websites

Gaining the trust of your customers and site visitors is essential. To establish trust in a digital world that’s filled with cyber threats, you need to demonstrate that you have their best interest in mind. This means taking the necessary precautions to protect their personal information and sensitive data from c… Read More