Effective April 1st, 2015, the CA/B Forum is reducing the maximum validity of OV (Organization-Validated) and DV (Domain-Validated) SSL Certificates to 36 months in order to increase SSL/TLS security. Under these guidelines, no CA or their partners should offer OV/DV SSL Certificates with a term of validity greater than 3 years. As of March 9th, 2015, Symantec will only sell OV and DV SSL Certificates with a maximum validity of 3 years. This restriction applies to new certificate issuance as well as renewals. Beginning April 1st, 2015, if you need to reissue your SSL Certificate, the maximum validity allowed will be 36 months.
CertCenter has officially launched its Ready Issuance for Symantec SSL Certificates within the management portal “CertCenter Extranet”.
After transmission of an order for an SSL certificate with Organization Validation (OV), an extensive vetting of the applying organization, the relevant contact, and the domain name, are the main responsibilities of the Certification Authorities (CAs).
It has taken our HR department a couple of months to find the right person for this job opening. We needed someone with the necessary experience and industry know-how to prevent delaying or clogging up the flow of daily processes and tasks. We are happy to announce that we have found our colleague, Mr. Hotze, to be ideally suited for this position. Before he joined us at CertCenter (on March 1st, 2015), Mr. Hotze had worked many years as part of the Symantec Authentication Services Team in Dublin, Ireland.
The IT industry is a fast moving sector with new innovations being developed on a regular basis.
It is not only organizations with multiple departments and IT specialists that desire flexibility in regards to the entitlements of their users and the availability of extensive auditing – these are almost always required by the compliance-process.
The next change for SSL Certificates
Certificate Transparency (CT) is a Google initiative to log, audit, and monitor certificates that Certificate Authorities (CAs) have issued. A CT’s intent is to prevent CAs from issuing public key certificates for a domain without the domain owner’s knowledge.
Google recently announced that certain SSL Certificates with a lifecycle beyond the 1st of January 2016 are going to be treated as progressively less trustworthy by future versions of Chrome. The SSL Certificates in question are those signed using the slightly dated SHA-1 hashing algorithm. The same is going to apply to SSL Certificates which have been signed using SHA-256, but contain SHA-1 Intermediates within their chain of certificates (Chromium Blog Post, 5th of September 2014).
Many businesses rely on the Microsoft Exchange Server for their internal and external messaging. The Exchange Server is usually designated as “server“ or ”server.local“ within the internal network.
Two-factor authentication has finally arrived, and we are now able to offer to our clients – by means of Symantec Validation and the ID Protection Service – a higher level of security when logging on to our Extranet.
As the first provider outside of the USA, the internationally operating provider of SSL Certificates and anti-malware solutions – CertCenter – was awarded the highest partner status of “Specialist Partner” by the US-American security group Symantec (NASDAQ: SYMC).