Skip to content

Microsoft Secure

Microsoft to remove WoSign and StartCom certificates in Windows 10

Microsoft has concluded that the Chinese Certificate Authorities (CAs) WoSign and StartCom have failed to maintain the standards required by our Trusted Root Program. Observed unacceptable security practices include back-dating SHA-1 certificates, mis-issuances of certificates, accidental certificate revocation, duplicate certificate serial numbers, and multiple CAB Forum Baseline Requirements (BR) violations. Thus, Microsoft will begin the...

Read more

Weekly Roundup : Sep 9, 2011 : DigiNotar Reverberations Continue

Trending Security News DigiNotar continued to reverberate through the industry this week. Companies scrambled to block and eliminate potentially compromised certificates. Meanwhile security experts took time to ponder what the event meant for security going forward. This led to headlines that included: Are Digital Certificates Doomed? and Cracked digital certificates endanger ‘web of trust’. Against...

Read more

Weekly Roundup : Sep 2, 2011 : DigiNotar and Fraudulent Google Cert

Trending Security News The big security news this week focused on the security breach of Dutch certificate authority DigiNotar, a subsidiary of Chicago-based Vasco Data Security. This significance of the event was underscored when it was announced that one of the certificates affected by the breach was for Google.com. ReadWriteHack summed up industry concerns with...

Read more