Starting October 14, 2025, newly issued, renewed, or reissued SSL/TLS certificates will no longer include the Client Authentication EKU
Continue reading
Category: Security
Changes to Domain Validation (DV) Methods – Upcoming Deadlines
For many years, Whois-based lookup has been one of the common methods used for Domain Validation (DV). Certificate Authorities (CAs),
Continue reading
Chrome to End Trust for Entrust & AffirmTrust TLS Certificates
Google has announced that starting October 31, 2024, Chrome (version 127 and above) will no longer trust TLS certificates issued
Continue reading
StartCom will stop issuing new certificates starting from January 1st, 2018
As we know, most of the browsers distrusted StartCom around a year ago and therefore all the end entity certificates
Continue reading
Insecure warning in Firefox
<p>Mozilla Firefox 52 has released, starting in this version, if the login page does not have a secure connection you
Continue reading
Google Just Cracked the SHA-1
The SHA-1 hashing function was designed by the United States National Security Agency (NSA) and its algorithm was first published
Continue reading
Google Chrome to block SHA-1 certificates in 2016
SHA-1 SSL Certificates are known as less security now and there are SHA-1 collision attacks. That’s why Google Chrome no
Continue readingSSL Certificates for Internal Server Names and Reserved IP
All publicly trusted SSL Certificates issued to internal names and reserved IP addresseswill expire before November 1, 2015. In November
Continue reading
Heartbleed OpenSSL vulnerability
A bug has been identified in OpenSSL, all details can be found at heartbleed.com. The bug has been assigned CVE-2014-0160.
Continue reading