Ars Technica

HTTPS Certificate Revocation is broken, and it’s time for some new tools

This article was originally published on Scott Helme's blog and is reprinted here with his permission. We have a little problem on the web right now and I can only see it becoming a larger concern as ...
PC World

The Decision to Strip Online Certificate Revocation Checks From Chrome Is Misguided, Symantec Says

Stripping OCSP (Online Certificate Status Protocol) and CRL (certificate revocation list) checks from Google Chrome could have dangerous implications because it will turn Google into a single point of ...
CIO

Certificate Authorities Form Group to Educate on SSL Best Practices

Responding to the increasing number of threats aimed at certificate authorities and the ecosystem of trusted online transactions they represent, seven certificate authorities have come together to ...
InfoWorld

Symantec: Stripping online certificate revocation checks from Chrome is misguided

Stripping OCSP (Online Certificate Status Protocol) and CRL (certificate revocation list) checks from Google Chrome could have dangerous implications because it will turn Google into a single point of ...
Dark Reading

Tech Insight: New CA Group Has Big Names, Small Impact

As reported earlier today on Dark Reading, a group of big-name certificate authorities (CAs) have formed an organization called the Certificate Authority Security Council (CASC) to promote best ...
heise online

Schedule published: Let's Encrypt abolishes OCSP certificate verification

Let's Encrypt, the largest certification authority with over 387 million valid certificates, is moving away from the Online Certificate Status Protocol (OCSP). The CA (Certificate Authority) has now ...