Removing a default root certificate from Windows XP may be pointless because that certificate seems to be automatically added as a trusted certificate again, according to security expert Paul Hoffman.
It's easy to scare away customers using an SSL certificate that has already expired. Don't let it happen to your business.
Certification authority and security services provider GlobalSign recently announced that it has rebranded and relaunched as a member of the GMO Internet group of companies and has launched a new set of products and services. Prior to VeriSign's acquisition of GeoTrust, GMO Internet managed the GeoTrust Europe, RapidSSL.com and GeoTrust Japan brands.
Netcraft's SSL Survey has found more than 600,000 SSL sites on the Internet for the first time in May of this year.
An article from Secure Computing magazine discusses how the increase of SSL encrypted communications is making it more difficult to stop malware from entering a company's network and keeping data from leaving the company network without authorization.
The SSL and TLS protocols have become the de facto standard for securing network communications. These protocols provide confidentiality, authentication and message integrity, but add additional complexity to client server communications. This situation is most evident when application maintainers and system administrators need to debug application-layer protocols protected by SSL. This article will discuss two utilities (ssldump and openssl) that can help debug applications utilizing SSL.
VeriSign's Tim Callan reports on some of the bigger sites that are now using EV certificates.
Scott Lowe gives an introduction to how to use SSL Certificates with Exchange 2007 explaining the annoyances that are involved.
On June 12th, 2007, the CA/Browser forum, a voluntary organization of leading certification authorities (CAs) and Internet browser software vendors, officially ratified the first version of the Extended Validation (EV) SSL Guidelines, which take effect immediately. The formal approval successfully brings to a close more than two years of effort, and provides the infrastructure for trusted website identity on the Internet.
The security specialist, Jeremiah Grossman, discusses "7 Deadly Sins of Website Vulnerability Disclosure" including Pride, Wrath, Desertion, Blame, Arrogance, Sloth, and Uncommunicative.