You may want to use a self-signed SSL-certificate on your website. This will allow you to save some money, because you do not have to pay for the certificate issued by an approved Certification Authority. However, using self-signed SSL-certificates have some…
In the following article we have compiled the most popular questions related to the root certificate. Q: Should I install the root certificate on the server? Answer: No, the root certificate is built into the connected device. In the case of…
In the era of Apple vs FBI and large-scale hacking on a regular basis, many people are beginning to realize that our data are not so well protected as they should be. Google, Amazon, Facebook, Microsoft and many other technological…
Wildcard SSL-certificates are designed to protect an unlimited number of sub domains on one domain name. This is very beneficial for many projects; however, this approach has its drawbacks. Wildcard-certificates are becoming affordable and more popular. In this article, we’ll reveal…
The cost of PKI implementation solely depends on each setting, but there are some costs that are common. In regards to hardware, costs may be associated with the server, HSM, backup devices. With regards to Windows environment, costs are also…
Public Key Infrastructure (PKI) is a common approach of encryption and authentication. This approach is used by a small businesses as well as large companies. In this article we will take a look at how PKI is used nowadays. There are…
Verification of certificates based on an confirmation of email account ownership is the most common certificate validation mechanism used by certification authorities in case of ordering DV certificates. The purpose of validation is to ensure the authenticity of the certificate…
Security researchers working for the company Sucuri, have decided to revise the report, written back in 2012, dedicated to the API-call security. API calls must verify the integrity of such libraries as JSSE, OpenSSL and of GnuTLS, or transport libraries…
Not so long ago the Netcraft, a company that scans the network, has released its “rebuke” for system administrators because they ignore HTTP Public Key Pinning (HPKP). Pinning enables you to protect users from attack, when the attacker deceives the…
In an effort to improve trust in the web, Google released a new tool for tracking fraud CAs. Google has decided to implement a set of tools to monitor the digital certificate providers that can deal with fraud. This set…
This site is dedicated to SSL-certificates. You will learn what is an SSL certificate, how to issue and reissue it. FAQ SSL will be useful for both novices and pros. SSL Knowledgebase contains sections on validation, trust logo, vulnerabilities, SSL-certificates differences by type (Wildcard, EV, DV, etc.), as well as many other things.
Comments