Why Are You Removing Website Identity, Google and Mozilla?
You can’t have consumer privacy without having strong website identity Today there’s a huge wave toward protecting consumer privacy – in Congress, with the GDPR, etc. – but how can…
(IN)SECURE Magazine Issue 19
Articles in this issue include: – The future of AV: looking for the good while stopping the bad – Security standpoint by Sandro Gauci: How security can hurt us -Review:…
9 Common Myths About CAs
Over the years misconceptions about CAs and the SSL infrastructure have arisen. Below is a list of common myths related to SSL and CAs. Myth #1: CAs are not regulated…
(IN)SECURE Magazine Issue 18
Articles in this issue include: Security standpoint by Sandro Gauci: Closing a can of worms, Network and information security in Europe today, Browser security: bolt it on, then build it…
The Advantages of Short-Lived SSL Certificates for the Enterprise
Short validity period certificates are becoming ever more common to reduce the scope of data compromised if a server vulnerability is uncovered, such as HeartBleed. Good security practice dictates changing keys on a…
What Are Subordinate CAs and Why Would You Want Your Own?
Digital certificate and PKI adoption has changed quite a bit in recent years. Gone are the days where certificates were only synonymous with SSL/TLS; compliance drivers like stronger authentication requirements…
(IN)SECURE Magazine Issue 17
Security standpoint by Sandro Gauci: when best intentions go wrong, Review: Red Condor Hosted Service, Reverse engineering software armoring (part 1), Security training and awareness: strengthening your weakest link, Hacking…
What the Latest Firefox Update Means for SSL Certificates
Last month marked the release of Firefox 66, the newest iteration of the ever-popular web browser. The update adds a number of interesting new features, including improvements to content loading and…
(IN)SECURE Magazine Issue 16
Articles in this issue include: Security policy considerations for virtual worlds, US political elections and cybercrime, Using packet analysis for network troubleshooting, The effectiveness of industry certifications, Building a secure…
2019 – Looking Back, Moving Forward
Looking Back at 2018 2018 was an active year for SSL/TLS. We saw the SSL/TLS certificate validity period drop to 825-days and the mass deployment of Certificate Transparency (CT). TLS…