DigiCert Blog

All posts under: Best Practices

  1. Closing the Security Gap between Experts and Regular Users

    The continual news of security hacks over the past couple years has made information security a hot topic even outside of the infosec industry. Internet users who may have previously had weak or obvious passwords have now become conscious of their responsibility to use strong passwords—whether or not they are prompted by a website to…


  2. How Effective Authentication Protects You Online

    Every security expert knows that there are two parts to successful security: encryption and authentication. While the responsibility for effective encryption lives predominantly in the hands of the experts, the responsibility for effective authentication really lies in the hands of every Internet user. Although there is a continual debate over best security practices, there are…


  3. Employee Education Key to Strong Enterprise Security

    As National Cyber Security Awareness Month (NCSAM) approaches, something to consider is the importance of cybersecurity within your own company. Since January 2015, the FBI announced a 270% increase of identified victims and exposed loss because of Business Email Compromise (BEC) scams. In a recent security assessment at DigiCert, many employees received emails with strange…


  4. How Mixed Content Compromises Security

    When users visit a website secured by an SSL Certificate, they expect their data to stay safe. But what happens if only part of the site is secured? Below is a scenario that illustrates one example of what could happen. Scenario You visit your favorite retail site to do some shopping. The site, example.com, is…


  5. Major Browsers Announce RC4 Deprecation in Early 2016

    If you haven’t heard already, the Internet Engineering Task Force has determined that stream cipher RC4 should never be used in TLS negotiations. And now Google, Mozilla, and Microsoft have all made announcements to deprecate support for the cipher in future browser releases, which are all slated for early 2016. The browser-related announcements follow years…