Now more than ever it’s time to move to HTTPS – not just because it’s the secure “cool” thing to do, but because it’s also becoming the standard rather than an afterthought. Scans and crawls in the last six months show HTTPS is growing by leaps » Continue Reading.
With a thoughtful, yet decided, hand Google is ushering in a new age of secure Internet communications. Starting this month with the release of Chrome 56, Google will label websites without a properly installed digital certificate as “Not Secure”. Initially, only websites that accept passwords » Continue Reading.
2017 will be a exciting year for the digital certificate community. One thing we expect to see: more widespread adoption of Certification Authority Authorization (aka CAA). CAA lets the owner of a domain name designate a specific Certificate Authority (CA), (like SSL.com) to issue digital » Continue Reading.
On February 10th, Cisco Systems patched a serious vulnerability (a buffer overflow exploit) in their Cisco ASA Software, used in firewalls, routers and other security appliances. This threat could allow a remote, unauthenticated attacker to gain complete control of a targeted system. With over a million » Continue Reading.
As Bruce Schneier and others have reported, your friends at the National Security Agency’s Information Assurance Directorate (IAD) recently issued a FAQ regarding their new Commercial National Security Algorithm Suite, intended to futureproof national security systems against the looming threat of quantum computing. Among their » Continue Reading.