DigiCert Blog

All posts under: SSL Certificate Management

  1. CAB/Forum Votes to Shorten Certificate Lifetime Validity Periods: How It Impacts You

    The CA/Browser Forum (CAB Forum) comprises the world’s leading CAs and browser vendors. The CAB Forum meetings and discussions attempt to build consensus on rules and guidelines about global digital certificate practices. One common topic is how to shorten certificate lifetimes. The goal is to accelerate security efforts and minimize the potential damage caused by…


  2. The Security Benefits of Audit Logging

    As an IT administrator, knowing the precise sequence of activities that affect a specific operation, procedure, or event within a company is very valuable. This is where audit logging (sometimes called event logging or system logging) comes in. Logging creates an “audit trail”—a security-relevant chronological record, or set of records, that documents an organization’s digital…


  3. Clearing Up Confusion about Certificate Transparency Requirements

    Some SSL Certificate customers have received emails from other Certificate Authorities (CA) that say they must enable Certificate Transparency (CT) for all their SSL Certificates. These emails urge customers to enable CT for “all” their SSL Certificates by June 1, 2016 otherwise their site(s) may be deemed “untrusted” in Google’s Chrome browser. This has caused…


  4. How Short-Lived Certificates Improve Certificate Trust

    Certificate Revocation Lists (CRLs) and Online Certificate Status Protocol (OCSP) are important technologies that—with ongoing work to improve their operations—can continue to provide a foundation for online trust. However, recent efforts within the CA/Browser Forum and Mozilla’s decision to support “short-lived” certificates in future versions of Firefox have shined the spotlight on an innovation that…


  5. Ordering a .Onion Certificate from DigiCert

    We recently fielded a high volume of questions about how to obtain a SSL Certificate for a .onion address. This blog post should provide basic answers to queries regarding .onion certificates. Background As of September, .onion is recognized as a special-use domain by the IESG, which means they can be secured with SSL Certificates. (Previously…