Firefox 3.5 was just released and it offers a few changes to the way that SSL is handles. It also appears that certain EV certificates are not displayed as EV certificates (they only show the normal blue bar rather than the green bar).
A YouGov survey commissioned by VeriSign, Inc. has revealed that 88 percent of Web users in the United States are at risk from online fraud because they can't identify the different forms of phishing currently happening online.
Entrust, Inc., is offering EV SSL certificates for the same low price of regular Entrust SSL certificates.
Microsoft researchers and others at the IEEE Symposium on Security and Privacy released information about serious web browser vulnerabilities when using a proxy. Because the findings weren't released publicly until, they have nearly all been fixed.
GlobalSign Announces Support for Transparent SSL Certificate Lifecycle Management at Microsoft TechEd 2009
Following a collaboration with the Microsoft public key infrastructure (PKI) team responsible for digital certificate services in the upcoming Windows 7 and Windows Server 2008 R2 products, GlobalSign was able to demonstrate a fully operational WS-Trust (Web Services Trust) implementation at yesterday’s Microsoft TechEd North America 2009 conference in Los Angeles.
New Certificate Discovery Module for VeriSign's Managed PKI for SSL Services Enables Real-Time Tracking of All SSL Certificates in Complex Business Environments
How do you know when you are a computer security professional?
SSL certificate compatibility is an important factor to consider when you are deciding on an SSL certificate provider. SSL compatibility is determined by the number of browsers that automatically include the root certificate that your certificate links up to. Find out how compatible your SSL certificate is.
Two security researchers Mike Zusman, and Alexander Sotirov have discussed possible attacks involving EV SSL Certificates at the tenth annual CanSecWest conference. Details are sparse but more will be released soon.
Are you looking for free SSL Certificates? Most sites should buy a trusted certificate from a well-known Certificate Authority to capitalize on browser compatibility and the high assurance of commercial providers. Still, there are many places where free SSL Certificates will work just fine.