Video Screencast Help
Search Video Help Close Back
to help

Website Security Solutions

Showing posts in English
What's going on in Canada these days
Tim Callan | 18 Dec 2012 | 0 comments

Today's entry is about my neighbors to the North, Canada. In particular I want to talk about VeriSign's recent acquisition of Soltrus, which until that acquisition had been VeriSign's SSL affiliate in Canada.

Read more
Two articles - High Assurance and trust mark effectiveness
Tim Callan | 18 Dec 2012 | 0 comments

Sorry for the gap in posting. I've been traveling on business for the CA/Browser Forum, which is the industry consortium that is putting the High Assurance SSL standard together. However, I have a couple cool articles for you here. One is a write up on High Assurance that appeared in IT Week, which I believe is the UK's largest weekly IT publication. The second is an interesting write up in Marketing Sherpa about some scientific testing a major e-commerce site did around the effectiveness of trust marks.

Read more
VeriSign Secured Seal on over 60,000 Web sites
Tim Callan | 18 Dec 2012 | 4 comments

I just received a comment on my post about the VeriSign Secured Seal on Best Buy accusing me of being US-centric. Granted I do live in the states, but the VeriSign Secured Seal is a worldwide phenomenon.

The number of sites displaying the VeriSign Secured Seal just surpassed the 60,000 mark. These sites span 125 countries, and on non-holiday weekdays over 50 million people view a VeriSign Secured Seal on at least one Web site. That's over 18 billion instances of a person looking at a VeriSign Secured Seal in a year. And there are only 6 billion of us on the planet.

Wow.

Read more
IE7 beta 2 is available for Windows XP
Tim Callan | 18 Dec 2012 | 0 comments

Travel home from the UK knocked me out of commission for a couple of days, and my schedule last week was pretty hectic as well, so I never got a chance to mention that the Internet Explorer 7 beta 2 release is available for download.

Read more
Best Buy chooses to display the VeriSign Secured Seal
Tim Callan | 18 Dec 2012 | 2 comments

Consumer electronics giant Best Buy has chosen to display the VeriSign Secured Seal on its home page and as far as I can see every other page on the site. Best Buy joins the likes of eBay, PayPal, Staples, Overstock, and Wal-Mart in employing the VeriSign Secured Seal. (Boy, that's a lot of links in one sentence.)

Certainly I'm pleased when any online retailer displays the VeriSign Secured Seal. What's particularly nice about these pillars of e-commerce is that they're the ones that stand to gain or lose the most sales and at the same time are the businesses best resourced to...

Read more
Greetings from Infosec!
Tim Callan | 18 Dec 2012 | 2 comments

As I'm writing it's 12:30 pm Greenwich Mean Time on day two of Infosecurity Europe (AKA Infosec), which means we're exactly halfway through the show. I've been booked solid between three presentations a day and meeting members of press, customers, and persons generally interested in the new High Assurance SSL standard. The level of interest here has been very high. Most of the people I talk to already understand that security fears are stifling online business and that phishing continues to be an unsolved problem. Likewise, they get how the new browser behaviors around High Assurance will dramatically improve the situation.

For your background, Infosec is Europe's largest IT security show and typically has about 15,000 attendees, most of them IT professionals with some level of security responsibility. It's extremely gratifying to see the level of interest in this new development.

Read more
It won't actually be called High Assurance SSL. Why not, and what should it be called?
Tim Callan | 18 Dec 2012 | 1 comment

In a recent post I alluded to a lack of clarity around the name of the new higher-authentication SSL standard. Up to now it's been code-named High Assurance SSL, but that name won't be the final one. I want to give you the background and spell out some criteria for an effective name.

Read more
CSO Magazine has two nice articles on phishing
Tim Callan | 18 Dec 2012 | 0 comments

I read a couple nice articles in CSO Magazine recently. One has a nice, comprehensive summary of phishing as it exists today and pragmatic things site owners can do to combat it. The other is a summary of e-mail certificates and how they fit into phishing prevention.

Read more
Why are so many Web forms unprotected?
Tim Callan | 18 Dec 2012 | 2 comments

One thing that continues to amaze me is the very large number of Web forms I see on line that are not protected with any SSL at all. While I do occasionally notice a Web form that actually requests a credit card order and doesn't offer at least the encryption that comes with the presence of an SSL Certificate, I'm not even talking about these gross offenders. What's much more common is the sites requesting information one step down from a credit card in sensitivity that don't bother to make the minimal investment in security for their site visitors that an SSL Certificate entails.

Read more
New phishing exploit emphasizes importance of high security browsers
Tim Callan | 18 Dec 2012 | 0 comments

A new exploit has been discovered that makes it possible for a phisher to fake a URL in the address bar of any Internet Explorer 6 browser, including the latest and most secure versions. I expect Microsoft will fix this exploit pretty quickly. However, this exploit highlights the value of increasing the phishing security in browsers. Firefox took the first important steps in this effort at the end of 2004. Browsers like Netscape and Opera followed suit, and now we're anticipating Microsoft's addition to the high-security browser market with Internet Explorer 7. Phishers will continue to discover new ways to trick people, of course, and we as an industry must maintain our laser focus on preventing those tricks wherever possible. VeriSign's doing its part by taking a leadership role...

Read more