Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.
Website Security Solutions
Showing posts tagged with Trust
Showing posts in English
Brook R. Chelmo | 16 Jul 2013 | 0 comments

In the sales world when we look at the sales cycle we tend to see everything as a funnel.  It has a wide open mouth at the top with narrower pipe at the end representing our sales.  As a business leader you look at each portion of the sales process to evaluate your success at each point to maximize the effectiveness of your marketing efforts.  Customer conversion rates are highly important.  Abandoned shopping carts are worrisome.  The checkout process for online retail sales is critical.  So how can you use security technology to drive customer conversion?  How can you widen the portion of the sales “funnel” at the checkout process and drive more sales?

At Symantec we have two very strong options you can leverage.

  1. Leverage the power of the Norton Secured Seal, the most trusted seal on the web.  Take a look at this interesting...
FranRosch | 02 Jul 2012 | 0 comments

Symantec has been a key driver in collaborative work with the CA/B Forum to develop a new set of baseline requirements for organization and domain validated SSL certificates. The CA/B Forum is an organization of leading Certification Authorities (CAs) and vendors of Internet browser software and other applications. The CA/B Baseline Requirements are documented in “Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates v. 1.0”.

We are proud to announce that Symantec is adopting the new Baseline Requirements effective July 1st, 2012. 

The Baseline Requirements focus on providing clear standards for CAs on important topics including verification of identity, certificate content and profiles, CA security, revocation mechanisms, use of algorithms and key sizes, audit requirements, liability, privacy and confidentiality, and delegation (...

FranRosch | 02 Feb 2012 | 3 comments

News broke recently that Verisign, Inc. reported in their quarterly SEC filings that they had been victims of a security breach in 2010. At this time, Verisign, Inc. has only confirmed that the incident did not impact their DNS business. 

Just as Verisign, Inc. stated that there was no impact to their production environment, I stand behind the following statement that Symantec made in response to media questions regarding the 2010 Verisign, Inc. security breach:

Symantec takes the security and proper functionality of its solutions very seriously.Trust Services (SSL), User Authentication (VIP, PKI, FDS), and other production systems acquired by Symantec were not compromised by the corporate network security breach mentioned in the Verisign, Inc. quarterly filing.

Unfortunately, many people are associating the breach at...

FranRosch | 23 Sep 2011 | 0 comments

All of the SSL and CA related activity in our industry is getting noticed by the press.  Symantec strongly believes that now is the time for the industry to pull together and focus on improving our operations and practices across areas such as:

  • CA application and network infrastructure
  • Authentication standards and practices
  • Auditing and Reporting
  • Breach Notification and Response

Check out the article that I think really captures this approach:

http://www.eweek.com/c/a/Security/CAs-Need-to-Invest-in-Infrastructure-Stronger-Business-Processes-360681

FranRosch | 13 Sep 2011 | 0 comments

The recent DigiNotar and Comodo Certificate Authority (CA) security breaches have once again highlighted the need to create standards for stronger security around SSL business operations and authentication processes.  At Symantec, we believe that the industry needs to work together to develop stronger security policies and procedures in three areas and then implement third party monitoring of adherence to these policies by the CA community.  These three areas are:

1.     CA Infrastructure:  Rigorous and diligent upkeep of CA security infrastructure is critical, components of which include:

·       Specifically-designed hardened facilities and physical security measures to defend against attacks

·       Hardware-based cryptographic signature systems

·       Regular third party...

FranRosch | 07 Sep 2011 | 1 comment

Since my last post, the effects of the recent DigiNotar breach have spread across the security industry. Many media outlets recently shared some of the names of the 531 fraudulent certificates created, including Google, Facebook, Skype, Microsoft, as well as each of the major certificate authorities. A hacker has claimed responsibility for the breach and claims to have breached some other Certificate Authorities as well. GlobalSign has ceased issuing certificates as it investigates whether or not it has been breached. Pundits are questioning the strength of SSL. Then, yesterday a Dutch government agency erroneously made a statement that Thawte had been breached. Although the statement was proven false and quickly...

FranRosch | 31 Aug 2011 | 0 comments

The Internet is buzzing with news of a recently compromised Certificate Authority (CA), DigiNotar, owned by VASCO Data Security International, Inc., possibly compromising a large number of consumers.

In July of this year an internal audit discovered an intrusion within DigiNotar’s CA infrastructure indicating compromise of their cryptographic keys. The breach of these keys resulted in the fraudulent issuance of public key certificates to a several dozen domains including the domain Google.com. Shortly after the incident DigiNotar revoked all of the certificates in question, conducted an additional external security audit and then attempted to revoke outstanding certificates that were affected. As of July 19th, DigiNotar believed all fraudulent certificates were taken out of circulation by revocation.

Unfortunately this week it was found that there were still instances of fraudulent certificates still in circulation. On August 28, 2011 a false DigiNotar wildcard...

Bob Angus | 18 Jun 2010 | 0 comments

Father's Day and graduations are right around the corner; it's time to
start looking for those special gifts to express your gratitude. Golfballs.com and HumidorVault.com build customer loyalty and trust by displaying the VeriSign Trust Seal.

As the nation honors 67.8 million fathers and more than 6.5 million high school, college and professional school graduates, loved ones from coast to coast will go online to find and purchase gifts for the dads and grads in their lives. In fact, online sales for Father's Day look very solid. Check out the stats being reported in...

Bob Angus | 09 Jun 2010 | 0 comments

shopping-cart-basket.pngChicago is the epicenter of ecommerce right now with the Internet Retailer Conference (IRCE 2010) in full force. VeriSign is adding to the buzz too. We just announced a new partnership with Cart32.

Cart 32 now offers the VeriSign Trust Seal to the thousands of merchants who use their comprehensive e-commerce solution. So now online retailers can go to one place for shopping cart software, store management tools, merchant services...

Bob Angus | 04 Jun 2010 | 0 comments

Thank you all for participating in the VeriSign Trust Seal Twitter Haiku contest. We received

Thumbnail image for Twitter Icon 1.png

some very creative haiku submissions!

The VeriSign Social Media team has selected the winner of the contest:

Razur LLC. @razur_agency

Winning Haiku entry:

@TrustSeal My identity/Protected by VeriSign/I feel safe online

Congratulations Razur!!!