Video Screencast Help
Website Security Solutions
Showing posts tagged with Code Signing
Showing posts in English
Tim Callan | 07 Apr 2010 | 0 comments

For all you tax procrastinators, time is nearly up. But don't fret. Just follow these six safety tips to help you stay protected when filing taxes online while maintaining your sanity.

The number of people filing taxes online is up this year from the previous; according to the IRS, more than 82% of the 69 million returns received so far this year have come in via e-file, and home usage of e-file is up almost seven percent compared to this time last year.

With the increase of online tax filing, identity thieves and hackers have decided to capitalize on this upward trend by creating phishing sites claiming to be the IRS. The IRS warns users that there is only one official IRS web site, IRS.gov, and that the service will never initiate contact with taxpayers via e-mail. ...

Tim Callan | 24 Mar 2010 | 0 comments

We recently announced partners TheFind and AVG putting VeriSign seals in online search results. Now we can add another to the list. Wired Magazine is now including the VeriSign seal in its shopping results accompanying product reviews, as you can see in this example.

Tim Callan | 03 Mar 2010 | 4 comments

It was at the RSA Expo in 2007 that VeriSign officially held a coming out party for Extended Validation SSL. Now I'm at the RSA Expo again, and it's a good time for a milestone check.

Today, more than 20,000 EV SSL Certificates have been deployed worldwide, putting EV SSL into an elite category of ultra-rapidly deployed technologies. Likewise, browser ubiquity is pretty darn high. More than 75% of client systems on the Web use browsers that can display the green address bar. Compatible browsers include IE7 and above, Firefox 3.0 and above (2.5 with downloadable plug in), Safari 3.2 and above, all versions of Chrome, Opera 9.5 and up, Flock, and the iPhone.

Dozens of online businesses have measured the effect of green address bars on their visitors' behavior and have seen...

Tim Callan | 03 Mar 2010 | 0 comments

It was a good night at the SC Magazine awards gala yesterday. We were very pleased to win not one but two awards yesterday, making VeriSign one of only three companies to bring home more than one prize. You may recall that we were nominated originally in four categories. The winners were VeriSign Code Signing in the Best Security Software Development category and VeriSign's Personal Identity Portal for Best Identity Management Solution.

Tim Callan | 02 Mar 2010 | 0 comments

It's been a pretty hectic week with the launch of the VeriSign Trust Seal last week. The VeriSign Trust Seal is live and running, and in fact I've already found it deployed on one site, BeerBoxes.com, an online retailer using a hosted, third party shopping cart.

One item I didn't have a chance to write about was our earlier announcement last week about online shopping center TheFind and its discoverery regarding the VeriSign seal and clicks-through. Short story is that when a site uses VeriSign...

Tim Callan | 24 Feb 2010 | 0 comments

Yesterday saw a lot of press coverage for our announcement of the VeriSign Trust Seal. Here are a representative few:

InformationWeek compared A/B split testing on the VeriSign seal to outside research by Harris Interactive and noted that they both yielded similar results.

PC World give a crisp summary of the product's functionality.

eChannelLine explains the product from the...

Tim Callan | 23 Feb 2010 | 1 comment

Busy day today, which is why this blog is so late. In addition to my track session and hosted lunch at eTail West in Palm Desert, CA (both of which went very well, thank you) VeriSign today announced the VeriSign Trust Seal, which will be generally available shortly.

The VeriSign Trust Seal is the latest update to the VeriSign Secured Seal, the world's most popular online trust mark. The VeriSign Trust Seal expands on the capabilities of the VeriSign Secured Seal in two significant ways.

  1. The VeriSign Trust Seal comes with a daily site malware scan,...
Tim Callan | 13 Feb 2010 | 0 comments

This breaking news article explains that a Comerica Bank customer is sueing the bank for practices leaving that customer exposed to a phishing attack that cost the business $550,000. This suit comes on the heels of another piece of litigation between PlainsCapital and one of its customers over $800,000 lost in another scam.

While it remains to see how these lawsuits will play out, banks and other organizations dealing with valuable customer information should consider how their own online security actions would help them in the event of a similar lawsuit. In fact, part of Comerica's response is that the duped individuals should have seen that the phishing site was not the correct...

Tim Callan | 10 Feb 2010 | 1 comment

This great video from Common Craft explains the broad strokes of site security in a way that anyone can understand. It's a good source for educating non-technologists on SSL and what they need to know.

Tim Callan | 03 Feb 2010 | 2 comments

An anonymous researcher recently outlined a chain of vulnerabilities and attack that was performed on the iPhone using a VeriSign S/MIME Email Certificate in part of the attack. The researcher obtained a Class 1 certificate, which is a low-assurance e-mail certificate that people use for encryption only. The e-mail address is the only authenticated information in the certificate. The identity name is not authenticated, by design.

The iPhone attack exploited a weakness in the iPhone that required a certificate chained to a root that the iPhone trusted. While a VeriSign cert was chosen, any certificate that chained to any root trusted by the iPhone would have sufficed. Contrary to some misinterpretations of the story, VeriSign did not incorrectly issue a certificate in Apple's name, and there was no error in the VeriSign authentication practices.

The Cryptopath blog, which unveilled the flaw,...