Xolphin News

7 May 2021

The CA / Brower forum has tightened the requirements for code signing certificates. From June 1, 2021, a minimum key size of 3072 bits is required. At the moment the minimum key size is 2048 bits. The reason for this is to improve security in order to be better prepared for future technological progress that enables extra computing power. In this ...

Read more

1 April 2021

In OpenSSL, frequently used software for setting up HTTPS connections, two vulnerabilities have recently been found that can lead to reduced accessibility of websites. Do you use OpenSSL? Check your OpenSSL version so that you can update quickly if necessary. What exactly is going on? An example proof-of-concept exploit was published on the widely used platform Github at ...

Read more

27 January 2021

Recently, the Dutch National Cyber ​​Security Center (NCSC) has adjusted its security guidelines, among other things with the advice to switch to the TLS 1.3 encryption protocol. This protocol is more resistant to (future) attack techniques and is also easier to configure securely than its predecessor TLS 1.2. Encryption protocols are used to set up a ...

Read more

19 January 2021

Last year Sectigo introduced the Web Security Platform, a solution that protects websites against almost all online threats. From now on, the Sectigo Web Security Platform is also available via Xolphin. This extensive and automated security platform offers you a fully customized web security package - both with and without an SSL certificate. Wat is the Sectigo Web Security Platform? The ...

Read more

2 December 2020

By Maarten Bremer, Xolphin founder Today marks a major milestone for Xolphin as we announce that we have been acquired by our long-standing partner and the world's leading Certificate Authority (CA), Sectigo. We have enjoyed a successful partnership with Sectigo for nearly 20 years. Together, we have made this strategic move to continue building on our two companies' ...

Read more

8 September 2020

From now on you can request SSL certificates from Sectigo on a subscription basis. With Subscription SSL you can enjoy the benefits of an SSL certificate with a longer validity period, despite the industry-wide limitation of the maximum validity period. Limitation of validity period As announced earlier this year, most browsers will no longer accept SSL certificates with a ...

Read more

14 July 2020

As previously announced, the validity period of SSL certificates will be further limited to 1 year as of September 1st, 2020. Apple was the first browser to announce that as of September 1st, 2020, it will limit the term of accepted SSL certificates to 398 days. Recently, Google and Mozilla also announced that they will no longer accept newly issued ...

Read more

31 May 2020

As previously announced, the Sectigo AddTrust External CA Root certificate expired on May 30, 2020. Because all Sectigo certificates have been cross-signed with the newer UserTrust RSA Certification Authority root for some time now, this change only has consequences when using outdated systems. What is the cause? SSL certificates are signed by a root certificate from a CA, such ...

Read more

30 April 2020

In November 2017, it was announced that Symantec had sold its SSL division to DigiCert. From that moment on, all Symantec brands, namely Symantec, Thawte, GeoTrust and RapidSSL, were covered by DigiCert. These brands have been issued by DigiCert since 2017. Now they go a step further: the Symantec SSL brand becomes DigiCert SSL as of April 30, 2020. The ...

Read more

30 March 2020

The year 2018 was a turning point for the use of SSL, with HTTPS becoming the standard. This trend has continued - In October 2019 no less than 94% of all visited web pages in Chrome were loaded on all platforms via HTTPS. Next to positive, these developments also have unintended negative consequences that grow steadily. What else happened in 2019, ...

Read more