Xolphin News RSS

Replacement of Sectigo EV certificates

21 January 2020

It has recently become known that a number of Sectigo EV certificates contain information that is not allowed. These certificates must be replaced at very short notice in order to remain trusted by browsers. This development has no impact on the safety of the affected certificates, but it does mean that many organisations have to replace their certificates very quickly ...

Read more

Change in use of OU-fields in Sectigo certificates

19 December 2019

As of December 15, 2019, Sectigo will change the use of OU fields for all new Sectigo certificates. From this date, it is no longer permitted to include non-organization-related information in an OU field. What is the OU-field? OU stands for Organizational Unit, this is a field in the Subject information in an SSL certificate. The Subject ...

Read more

Browsers alter the display and notifications for SSL certificates

15 August 2019

A lot is happening with regard to the display of HTTP and HTTPS by the different browsers. They are working on improving the recognisability of secure websites and the strive to HTTPS by default for some time now. Warnings for HTTP become more serious From version 70, the widely used web browser Mozilla Firefox will mark all webpages without HTTPS ...

Read more

Resign Java code by expired Sectigo timestamping certificate

22 May 2019

The Sectigo timestamping certificate expires on July 9, 2019, and has been replaced. After this date Java-code signed with this certificate will cause warnings. These warnings can be resolved by signing and timestamping the code again. What are the consequences? The expiry of the timestamping certificate only has consequences for Java-code signed before March 4, 2019. This may ...

Read more

Expected increase of HTTPS in 2018 realized

22 January 2019

Many developments have happened in the international SSL market as well as at Xolphin. 2018 was a turning point for the use of SSL: for the first time ever, there are more secure websites than insecure websites. Early last year, a large increase of HTTPS use was expected, leading to secure connections being the new standard. One year later, this ...

Read more

Comodo CA continues as Sectigo

31 October 2018

From November 1st, Comodo CA is called Sectigo. This applies to the company name, but also to all brand- and productnames. To ensure a smooth transition, the coming year 'Sectigo, formerly known as Comodo CA', will be used. Why this change? Last year Comodo's certificate division was acquired by Fransisco partners. Since then, the certificate division is called Comodo ...

Read more

End support for TLS 1.0 and TLS 1.1

19 October 2018

Apple, Microsoft and Google announced they will cease support of the encryption protocols TLS 1.0 and 1.1 from early 2020.  Because the use of these protocols for setting up a secure connection is minimal, the impact will probably be low. What will change exactly? From early 2020 the internet protocols TLS 1.0 and 1.1 won’...

Read more

Final exchange deadline Symantec, Thawte and GeoTrust certificates approaches fast

25 September 2018

As previously communicated, the browsers slowly cease their trust in Symantec SSL certificates. For all Symantec, Thawte and GeoTrust certificates issued before 1 December 2017, the final exchange deadline of 23 October is now approaching fast. You can renew your certificates free of charge so that they remain trusted by the browsers. What's the planning? Google Chrome ceases trust ...

Read more

Chrome now warns for all unsecured websites

16 August 2018

The popular Google Chrome browser version 68 was released at the end of July. From this version, all websites without an HTTPS connection show an 'unsafe' message informing visitors that the connection is not secure - a change that can have a lot of impact when we look at the current situation.   Warning becomes more serious This change is a ...

Read more

Chrome removes secure notification

6 June 2018

From early 2017 Chrome shows a green ‘Secure’ notification for all websites that have an HTTPS connection. They recently announced that this notification will not be shown anymore as of September this year. By then, only EV certificates will show a positive indicator. Research from the Dutch news organisation NOS shows that the current notifications cause confusion and that ...

Read more

point up