- November 22, 2023
- Sarah Topping
DevOps Teams Need to Reprioritize Security - Here’s How
DevOps teams can no longer treat security as an afterthought, but reprioritizing is a huge task. Learn the best practices for prioritizing security.
-
Globalsign re-accredited as NAESB CA
March 19, 2015GlobalSign’s successful completion of the North American Energy Standards Board (NAESB) Authorized Certification Authority accreditation audit.
-
WhiteHouse.gov Implements Always On SSL and You Should Follow Suit
March 17, 2015Last week the White House’s web team announced that it was enabling HTTPS by default, also known as Always On SSL (AOSSL). The FTC did the same thing a week before that. AOSSL isn’t a new concept for…
-
Is your SSL Server Vulnerable to a Freak Attack?
March 16, 2015FREAK is a new man-in-the-middle (MITM) vulnerability discovered by a group of cryptographers at INRIA, Microsoft Research and IMDEA. FREAK stands for “Factoring RSA-EXPORT Keys.” The vulnerability…
-
SSL Certificate Validity to be limited to 39 months
March 12, 2015As stated by the CA/B Forum, no later than 1 April 2015, certificates must be limited to a maximum validity of 39 months.
-
Reflections on FTC's IoT Report - Careful Connections: Building Security in the Internet of Things
March 02, 2015t's great to see the abundance of cyber and information security discussion and activity by regulators of late. Particularly in January, the FTC released a report providing guidance to business for…
-
System integrator Avisi enables certificate-based authentication for Dutch notaries
March 02, 2015System integrator Avisi enables multi-factor authentication for Dutch notaries when accessing KNB platform
-
3 Reasons to Run an Internal CA...That You Should Reconsider
February 27, 2015It's clear digital certificates can be a great option for your security projects (e.g., authentication, digital signatures, secure email), but once you've decided on a certificate-based solution, you…
-
Lenovo enables man-in-the-middle attacks via Superfish Adware
February 20, 2015Lenovo enables man-in-the-middle attacks via Superfish Adware- find out how!
-
PKI's Role(s) in Securing the IoT
February 19, 2015It seems you can't go a day without hearing about the Internet of Things (IoT). While there's no questioning the scale and impact it's going to have on our life as we know it, there is one major…
-
Six ways identity will take center stage in 2015
February 02, 2015With the growing connectedness of all things great and small, the need for trusted identities will take center stage in 2015...
-
Email Encryption for All? Thoughts on the Sony Hack
January 06, 2015Everyone's talking about the Sony megahack, and for good reason. The sheer amount of data (up to 11 TB), and the contents (passwords, employee social security numbers, corporate secrets, emails) have…
-
POODLE Vulnerability Expands Beyond SSLv3 to TLS 1.0 and 1.1
December 09, 2014When we first reported on the POODLE (Padding Oracle On Downgraded Legacy Encryption) vulnerability in October, it was believed to only affect the SSLv3 protocol. However, the vulnerability, which…
-
Bringing Two-factor Authentication to Code Signing with New EV Certificates
December 04, 2014We're looking at some of the top security advancements of code signing certs such as two-factor authentication.
-
Answering your Email Encryption and Document Signing Questions
November 26, 2014Tackling some digital signature and S/MIME FAQs, including what happens to encrypted emails after the certificate expires, how to streamline public key exchange, and how PDF and Office digital…
-
85% of Online Shoppers Avoid Unsecured Websites
November 19, 2014How online-shops can convince customers to online Christmas shopping by providing internet security (SSL, https, padlock, green address bar).