CA|B Fourm Passes Ballot 218 – Removing validation methods 1 and 5

As of August 1, 2018, all Certification Authorities (CA) can no longer validate domains by matching WHOIS domain registrant search results with certificate requester. Purpose of Ballot: Section 3.2.2.4 says that it “defines the permitted processes and procedures for validating the Applicant’s ownership or control of the domain.”  Most of the validation methods actually do validate ownership and control, but two do not, and can be completed solely based on an applicant’s own assertions. Since these two validation methods do not meet the objectives of section 3.2.2.4, and are actively being used to avoid validating domain control or ownership, they should be removed, and the other methods that do validate domain control or ownership should be used. WHAT ARE THE ACCEPTED VERIFICATION […]

Read More

CA|B Forum Passes Ballot 193 – Deprecation of 3 Year SSL Certificates

The CAB Forum (CA Forum) is the governing body that moves the security of the internet with SSL Certificates. The CA/Browser Forum began in 2005 as part of an effort among certification authorities and browser software vendors to provide greater assurance to Internet users about the web sites they visit by leveraging the capabilities of SSL/TLS certificates. The Ballots they pass together are geared to propelling the internet into a more safer environment. What was passed in Ballot 193? Maximum SSL validity period will be restricted to 2 year (825 days / 27 months) effective March 1, 2018. Authentication domain and organization vetting will only be valid for 27 months effective April 22, 2017 What does this mean? Eventually there […]

Read More