News

Opinion
Bug hunter tricked SSL.com into issuing cert for Alibaba Cloud domain in 5 steps
As a bug report posted on Friday by someone using the handle “Sec Reporter” pointed out, when SSL.com received a request to issue a certificate, during the domain validation process it “incorrectly ...
Design-Reuse1y
Embracing a More Secure Era with TLS 1.3
For example, a bank’s customer wants to be certain that they ... Thus, the official history of TLS begins with SSL v2.0, as seen in the timeline below: The final version of SSL published by Netscape ...
CSOonline17d
Attackers abused a bug within SSL.com to authorize fake certificates
In theory, only someone who controls the domain (like [email protected]) should be able to ... 3.2.2.4.14 that was used in the bug report for all SSL/TLS certificates while we investigate.” ...
Bleeping Computer26d
SSL/TLS certificate lifespans reduced to 47 days by 2029
The CA/Browser Forum has voted to significantly reduce the lifespan of SSL/TLS certificates over the next 4 years, with a final lifespan of just 47 days starting in 2029. The CA/Browser Forum is a ...