Important Security Advisory Blog: Heartbleed Bug

  • Author: Doug Beattie
  • Category: Online security, SSL

A serious vulnerability named the Heartbleed bug was announced Monday night (04/07/2014) in OpenSSL* (version 1.01 and OpenSSL beta 1.0.2); the popular open source cryptographic library. If you are are using Nginx or Apache there is a high probability that you are running OpenSSL. The Heartbleed vulnerability is something OpenSSL users should take very seriously as it enables an adversary to obtain data from portions of the web server memory.

Read on for resolution and recommendations →

Everything you need to know about the move to SHA-256 SSL Certificates

  • Author: Doug Beattie
  • Category: Cybersecurity, SSL

One of the more recent industry movements is the transition from having SSL Certificates signed with the SHA-1 hashing algorithm to certificates signed with SHA-256, the most widely supported of the SHA-2 family of algorithms. The urgency of this transition is due to recent advances in cryptographic attacks on SHA-1, demonstrating that SHA-1 is becoming more susceptible to collision and pre-image attacks.

Read more →

New Tool Makes Certificate Signing Requests (CSRs) Easy

  • Author: GlobalSign Solutions Team
  • Category: CSRs, Support

At GlobalSign we believe that SSL security should be simple, as well as readily available to all that need it and not just used by IT experts. We’ve already tackled the complexities of SSL configuration with our SSL Configuration Checker and now we’re taking on one of the biggest and most common hindrances of the SSL application process - CSR generation.

Read more →

1024-bit Certificate Deadline - Are you ready?

  • Author: GlobalSign Solutions Team
  • Category: CA, Best Practices, SSL

Our previous post Digital Certificate Best Practices - Being One Step Ahead details how 1024-bit certificates are now considered to be weak and vulnerable. We have long supported the mandates now officially ratified by the CA/B Forum and NIST, that from 2014, all SSL Certificates must be a minimum of 2048-bit key strength. We have not issued 1024-bit SSL Certificates for several years, however due to the longer lifetime of some certificates, there are still a small amount of 1024-bit SSL Certificates in use.

Read more →

Authentication Trends: How Do You Compare?

  • Author: GlobalSign Solutions Team
  • Category: Authentication

We recently hosted a webinar in association with Infosecurity discussing how to make access to sensitive data more secure. We surveyed attendees on the topic of multi-factor authentication, the level of security their organisation currently uses, as well as information surrounding their infrastructure setup. Their answers provided valuable insight into how today’s enterprises react to the current security threat landscape. Below is a summary of our findings.

Read more →

The Dangers of SSL Certificate Expiration

  • Author: GlobalSign Solutions Team
  • Category: SSL Certificates

SSL expiration has been making headlines lately with Netcraft recently reporting over 200 certificates have expired in relation to the US government shutdown. With many people wondering “What’s the big deal?” we wanted to examine why expiration is important and outline how it affects both website owners and website visitors.

Read more →

Trust the math. Choose your friends wisely.

  • Author: Ryan Hurst
  • Category: Secure SSL

Just like you, over the past months, we have been watching the coverage on the Edward Snowden leaks. Each leak has provided unprecedented insights into both the capabilities and practices used by the intelligence community today.

While I personally find some of the details in these leaks both surprising and disappointing, the fact that the intelligence community has continued to develop its abilities around cryptanalysis and cyber defense is not surprising at all.

Read more →

Save the Date – Release of GlobalSign’s New and Improved Secure Site Seal

  • Author: GlobalSign Solutions Team
  • Category: Secure SSL, Site Seal, Consumer Trust

Last month we discussed GlobalSign’s New Developments in Enhancing Consumer Trust, where we announced the planned roll out of our new and improved Secure Site Seal. The new design is a great fit for modern websites and will be served in a variety of colours and styles to suit the individual website; ensuring branding clashes will be a distant memory. The first priority of the redesign was to increase trust and we feel the new Secure Site Seal does this incredibly well; enabling you to increase customer conversions effectively.

Read more →

Celebrating Being the 2nd largest CA in Brazil, by Being in Brazil

  • Author: Steve Waite
  • Category: International Relations, Exciting News

This week we're visiting Sao Paulo, Brazil for the 2nd annual Latin America World Hosting Day event. On Thursday afternoon we will be presenting how to host multiple SSL Certificates on one IP address, thereby allowing hosts to avoid costly IP block purchases when looking to activate SSL security for their customers. While preparing for the talk, we had a chance to review the last 18 months of progress we've made in the Latin America region…

Read more →

Pull the Plug on Malware with GlobalSign’s 10 Tips on Identifying Bad Code

  • Author: GlobalSign Solutions Team
  • Category: Malware, StopTheHacker

Back in March Anirban Banerjee, CTO & Co-founder of StopTheHacker, GlobalSign’s malware monitoring partner, provided us with a guest article: Beware the 'Ware: Top Ten Worst Types of Website Malware (And How to Avoid Them). From the comprehensive list of attacks, we thought we would provide you with some of the most common code changes hackers infiltrate into websites and give you some tips on how to identify malware that may have leeched its way onto your hosting server.…

Read more →

GlobalSign Launches New Support Site

  • Author: GlobalSign Solutions Team
  • Category: Support

When you are faced with issues you don’t know how to resolve, the last thing you want is a complicated process to find the answers (or to try to find the answers but don’t succeed). GlobalSign believes that help should be easily available and relevant information shouldn’t be hard to find. That’s why we have redesigned and relaunched our support site, so that all of our resources are at your fingertips and help is only one tap of a key board away. With its clean interface and new features, the new and improved support site is all about achieving great user experience.…

Read more →

Welcoming the Auto Enrollment Gateway to the GlobalSign Family

  • Author: Lila Kee
  • Category: AEG, Enterprise Certificate Management

I am very excited to announce the latest addition to the GlobalSign solutions family - the Auto Enrollment Gateway! The Auto Enrollment Gateway, or AEG as it's affectionately known, is a crucial piece to the enterprise certificate management puzzle…

Read more →

Answering the Need for Higher Security Levels in the Large Enterprise

  • Author: GlobalSign Solutions Team
  • Category: Enterprise Certificate Management, Internal CAs, SaaS CAs

As Cloud services and BYOD are now everyday practices in the large enterprise, more sensitive data is shared and accessed than ever before. But, as Gartner points out in its January 10th 2013 report Fundamentals of Authentication written by Trent Henry…

Read more →

GlobalSign's New Developments in Enhancing Consumer Trust

  • Author: GlobalSign Solutions Team
  • Category: Secure Site Seal, Consumer Trust

The Internet is crucial for a wide range of applications we use today, as a consumer and in business; unfortunately cyber criminals continually have new ways of targeting an ever increasing online population. With exploitation in mind, many users are now becoming more wary of where they purchase goods from and…

Read more →

NAESB PKI Standards to be Used in New CNI Cybersecurity Framework

  • Author: Lila Kee
  • Category: Cybersecurity, Critical National Infrastructure (CNI)

I'm pleased to see the good work of the North American Energy Standards Board (NAESB) PKI standards development get recognized as a model for other Critical National Infrastructure (CNI) sectors to follow as noted in the recent announcement by the National Institute of Standards and Technology (NIST)…

Read more →