DigiCert & Symantec: A dream couple.

It has been almost a year since Symantec’s hitherto unscathed reputation in the certificate business was shaken because of inconsistencies in the vetting process of some Symantec RAs and the subsequent gloomy forecast by Google’s Chromium team. Every day, you may find articles in the international press that contain sentences such as, “Google plans to stop trusting current Symantec certificates.” However, such headlines seem to come out of thin air, as they are all about certificates issued before June 1, 2016. These also retain the usual compatibility after a free certificate replacement (re-issue), even after April 2018. Continue reading

New Apache modules allows web hosts to use file-based SSL certificate validation w/o using files

This post will give our reader a brief overview in our work in the Hosting & CDN environment. It will outline how SSL/TLS automation can be implemented secure, is cost-neutral, and compliant to small and medium hosts: Continue reading

Symantec Further Improved OCSP Performance

OCSP (Online Certificate Status Protocol) is a new way to validate the revocation status of X.509 digital certificates. OCSP has superseded the previous protocol CRL (Certificate Revocation List) and improves upon some of its shortcomings.

A major limitation of CRL checking is that updates must be frequently downloaded in order to maintain a current list of valid X.509 certificates from the client. This in turn can put a burden on the client’s network and calling resources. OCSP responses contain less information than CRL checking, which in turn decreases the burden on the client network.

Symantec further improved OCSP performance by building a highly efficient and responsive OCSP infrastructure to ensure X.509 validity can be checked quickly and with minimal effort from the client. The result is that Symantec is the fastest in the industry in determining X.509 digital certificate status.

OCSP checking

This is another example where Symantec is consistently working to improve the user experience while managing X.509 certificates within the demands of the modern Internet.

 

CertCenter Demonstrates How SSL Certificates Can be Issued up to 288 Times Faster

Download Case Study

Download Case Study

For a website, trust means business. Symantec SSL Certificates and the Norton Secured Seal displayed with them form the most trusted mark on the Internet. One reason this is true is that to use these assets, an organization must have its identity carefully validated. Now, customers can take advantage of a new feature called Symantec Ready Issuance and get new or renewed Symantec SSL Certificates as much as 288 times faster. CertCenter, a Symantec Website Security Partner, shows how the new feature works.

Why Wait?

Getting Symantec SSL certificates is now faster and easier.

“Customers who ordered or renewed an Organization-Validated SSL certificate used to have to wait at least a day to get it”, says Carsten Müller, CEO at CertCenter, a leading Symantec Website Security Partner. “Now, using Symantec Ready Issuance, customers can get their certificate in 10 minutes – about 288 times faster than before”.

Read the full story (PDF) ..

(German version available ..)

SSL Certificates to be Restricted to 36 Month Validity as of April, 1st 2015

Effective April 1st, 2015, the CA/B Forum is reducing the maximum validity of OV (Organization-Validated) and DV (Domain-Validated) SSL Certificates to 36 months in order to increase SSL/TLS security. Under these guidelines, no CA or their partners should offer OV/DV SSL Certificates with a term of validity greater than 3 years. As of March 9th, 2015, Symantec will only sell OV and DV SSL Certificates with a maximum validity of 3 years. This restriction applies to new certificate issuance as well as renewals. Beginning April 1st, 2015, if you need to reissue your SSL Certificate, the maximum validity allowed will be 36 months.

Continue reading

Symantec Ready Issuance Now Available at CertCenter

CertCenter has officially launched its Ready Issuance for Symantec SSL Certificates within the management portal “CertCenter Extranet”.

After transmission of an order for an SSL certificate with Organization Validation (OV), an extensive vetting of the applying organization, the relevant contact, and the domain name, are the main responsibilities of the Certification Authorities (CAs).

Continue reading

Two-factor Authentication Offers Additional Security Measures when Logging on to CertCenter, Completely Free of Charge

Two-factor authentication has finally arrived, and we are now able to offer to our clients – by means of Symantec Validation and the ID Protection Service – a higher level of security when logging on to our Extranet.

Continue reading