DigiCert Blog

All posts under: Encryption

  1. Enterprise Security: Are Your Partners Secure?

    Making partnership decisions is contingent on creating symbiotic relationships. Most businesses choose their partners in order to increase sales, achieve common goals, and expand marketing reach. One thing that can go unnoticed when choosing a partner, however, is the organization’s dedication to secure business practices. With security risks as high as they are today, you cannot assume…


  2. The Current State of .Onion Certificates and What Happens Next

    Digital certificates allow users to verify they are connecting to a legitimate website and browse worry-free. Last year, DigiCert issued a certificate to Facebook’s .onion address and has since issued certificates to several other .onion addresses. These certificates allow Tor users to browse anonymously while still being able to identify that the website is operated…


  3. Google Pushes HTTPS with Google Canary Feature

    On the heels of an announcement last summer that websites using HTTPS will receive a SEO boost, Google is taking more steps to encourage a more encrypted web. Google created a version of Chrome with a feature designed to warn users when they visit unencrypted web pages. For now, this feature is only available on…


  4. Welcome to the Web, HTTP/2

    With the IETF’s recent approval of the HTTP/2 protocol, major browsers and technology experts are hyped about the benefits of a new and improved protocol. HTTP 1.0 has been around since 1999 and, like any sixteen year-old, it’s starting to act up. Although most Internet users are blaming Comcast when they have a slow connection, experts…


  5. FREAK Attack: What You Need to Know

    Currently known as ‘FREAK,’ this vulnerability (CVE-2015-0204) allows attackers to intercept HTTPS connections between vulnerable clients and servers and force them to use ‘export-grade’ cryptography. This export-grade cryptography includes out-of-date encryption key lengths that can then easily be decrypted. This vulnerability does not effect on SSL Certificates and does not require any action related to…