SSL News
idAlliance Corporation Releases iManageCerts(TM) Certificate Management Tool
iManageCerts provides organizations with monitoring and maintaining of SSL Certificates and preventing expiration outages.
SSL and TLS Renegotiation Vulnerability Discovered
Details of a new vulnerability involving SSL and TLS has been discovered. The vulnerability involves a flaw in renegotiation and allows man-in-the-middle attackers to surreptitiously introduce text at the beginning of an SSL session.
10 common network security design flaws
Brien Posey discussed 10 common network security design flaws including two that are directly related to SSL
Thawte Shuts Down Free Email Certificates
Thawte announced that they will no longer be offering free email certificates
Microsoft Adds Support for StartCom Certificates
StartCom is proud to announce that digital certificates issued by the StartCom Certification Authority are now fully trusted and legitimate in Microsoft applications such as Internet Explorer and Office/Outlook.
Go Daddy on Pace to Become Largest SSL Provider in the World
Experts Forecast Fastest Growing SSL Provider to Pass All SSL Competitors in 18 Months
Hackers expose weakness in visiting trusted sites
A powerful new type of Internet attack works like a telephone tap, except operates between computers and Web sites they trust.
Public SSL Server Database Released
A new tool, the Public SSL Server Database, has been released by SSL Labs that will check a website to determine if an SSL certificate is correctly installed and configured to accept secure ciphers.
SSL Certificates in Firefox 3.5
Firefox 3.5 was just released and it offers a few changes to the way that SSL is handles. It also appears that certain EV certificates are not displayed as EV certificates (they only show the normal blue bar rather than the green bar).
Research Reveals 88 Percent of American Web Users Unable to Spot Phishing Sites
A YouGov survey commissioned by VeriSign, Inc. has revealed that 88 percent of Web users in the United States are at risk from online fraud because they can't identify the different forms of phishing currently happening online.
