SSL News

How To Configure SSL Host Headers in IIS 6

December 8, 2007

If you have more than one SSL enabled website using the same IP address you may need to configure SSL Host Headers. This tutorial will walk you through the process.

Merchant Risk Council Recommends Extended Validation SSL Certificates

November 25, 2007

The Merchants Risk Council, whose mission statement is to "to make the internet a preferred place to shop and sell", is recommending that e-commerce sites adopt extended validation certificates in place of their current SSL certificates.

Root Certificate Programs

November 25, 2007

G-Loaded wrote about how certificate authorities get their root certificates embedded in web browsers so that they are automatically trusted.

What is weak SSL encryption?

November 18, 2007

VeriSign's homepage recently featured a graphic advising visitors to avoid "Weak VeriSign SSL Encryption". What is that supposed to mean?

The Top 5 SSL Tools

November 4, 2007

Several SSL Tools are available for those who need to troubleshoot an SSL problem or those who just what to make the SSL set-up process easier.

Online trading site was left wide open

October 28, 2007

The conventional wisdom that banking organisations are more diligent with security was skewered in a presentation at the RSA conference this week.

Browsers and SSL Support

October 21, 2007

Larry Seltzer from eWeek.com discusses the state of SSL support in current browsers and how SSL errors can be made more user friendly while maintaining safety.

Look for the small padlock, not the big one

October 14, 2007

Tim Anderson details how one site misdirected some users to an insecure website but asked for credit card details.

Enable SSL for Google Analytics

October 8, 2007

If you use the unsecure Google Analytics code on one of your secure web pages your web browser will warn that there is some page content that is not secure. Learn the simple fix here.

Forcing SSL In IIS

September 23, 2007

Eric Randle posted about how to force SSL on an IIS website while still allowing normal access to redirect to the secured version.