Geoff Huston shares some PKI config issues experienced when migrating labs.apnic.net to a new platform.
Learn how browser are being made aware of revoked certificates and the the challenges associated with this security measure.
Guest Post: What do clients and web servers need to do to support OSCP Must-Staple?
Guest Post: What is the current reliability and accuracy of CA responders, and what do they need to do in order for OCSP Must-Staple to be deployed successfully?
Guest Post: Online Certificate Status Protocol (OCSP) is one of the primary protocols browsers use to communicate with Certificate Authorities to obtain revocation attestations.
Guest Post: Study scans 600 million certificates from 30 CT logs to analyze the application of best security practices.
Guest Post: What are the most widely used HTTPS security extensions and how are they improving HTTPS security for users?
Guest Post: What is Certificate Transparency, and why is it becoming an ever-important security feature?
Let’s Encrypt launched its Public Beta service recently where you can get a certificate for your domains, for free. Here are some simple instruction on how to use it.