Video Screencast Help
Search Video Help Close Back
to help

Website Security Solutions

Showing posts tagged with Browsers
Showing posts in English
Greetings from Black Hat
Tim Callan | 18 Dec 2012 | 2 comments

From an SSL perspective it was a quiet Black Hat this year. There were two presentations focused on SSL (plus one at DefCon which I didn't have the opportunity to attend).

The earlier of the two presentations came from Ivan Ristic of SSL Labs. Ivan presented the results of his large scale crawl of domains, searching for SSL Certificates and in particular checking the implementation of these certificates. The good news is that the vast bulk of installed certificates appear to be well configured in Ivan's view, but he did find significant numbers of certificates containing one or more of what he considers to be implementation errors. It was good work and helpful, even...

Read more
Over 75% of clients EV aware
Tim Callan | 18 Dec 2012 | 1 comment

With the release of Safari 4 and the ongoing adoption of current versions of other browsers, the number of client systems using EV-compatible browsers has exceeded 75%.

Read more
Which continent has 100% EV SSL compatibility?
Tim Callan | 18 Dec 2012 | 0 comments

That's right. There is an entire continent on which 100% of the Internet browsers are EV SSL compatible. What's the continent? Antarctica, of course.

Read more
Safari 4.0 beta has improved green address bar
Tim Callan | 18 Dec 2012 | 0 comments

The Safari 4 beta is out. While many of us were pleased to see EV SSL support in version 3.2, there was a widespread opinion that the organization information was not prominent enough. Now we get a peek at version 4, and Apple appears to have fixed that problem. But don't just take my word for it. Here is a review with screen caps from a Safari user.

As an aside, this same reviewer has comments on the other popular browsers and their EV SSL interfaces as well.

Read more
Over 10,000 EV sites
Tim Callan | 18 Dec 2012 | 0 comments

It's a week of milestones. A few days ago I mentioned that over 70% of client systems were on EV-aware browsers. And according to the latest numbers from Netcraft, as of this month over 10,000 Web sites are using Extended Validation SSL Certificates.

Read more
EV-aware browser share tops 70%
Tim Callan | 18 Dec 2012 | 0 comments

According to the latest browser market share numbers from Net Applications, the total worldwide client market share for EV-aware browsers topped 70% in the last month. That's great news for businesses seeking to increase customer assurance in uncertain financial times. And it's particularly impressive when you consider that this figure hit 50% just this last August. That's very fast adoption indeed.

Read more
Flock has EV support
Tim Callan | 18 Dec 2012 | 0 comments

Apologies for being late to the party on this one, but I have recently come to the realization that social networking friendly browser Flock has had EV support for a while, probably since October 15. I didn't get the word before now, most likely because I'm an old guy.

Read more
Safari joins the ranks of EV-compatible browsers
Tim Callan | 18 Dec 2012 | 1 comment

Well, it's official. New version 3.2 of Safari recognizes Extended Validation SSL Certificates. Safari has chosen a Chrome-like interface and displays the organization name in green at the upper right.

Read more
More intel on Chrome and SSL
Tim Callan | 18 Dec 2012 | 0 comments

As promised I've looked a little more into the SSL behaviors in Chrome.

Chrome has a nice, strong interface regarding certificate errors. The browser presents a roadblock that you have to explicitly pass to access the page (similar to recent developments in, let's say, IE and Firefox), at the bottom of which you see two buttons, "Proceed anyway" and "Back to safety". If you select "Proceed anyway," then you can access the page, but now the https in the Web address is highlighted in red and has a red slash through it, and that reminder remains even while you're in the page. eWeek's Larry Seltzer has screen caps of a self-signed certificate so that you can see for yourself.

I feel the persistent...

Read more
How Google Chrome supports EV SSL
Tim Callan | 18 Dec 2012 | 8 comments

If you've been camping in the mountains or something you may not have heard that Google will be releasing its own browser, Chrome.

As you might expect, I was instantly curious about how Chrome works with SSL. These are quick and dirty preliminary results, but here's what I have for you today.

Chrome appears to work with SSL in the expected manner. When SSL is in place, the address bar still displays https, and a lock icon appears next to the address bar.

Chrome also recognizes Extended Validation SSL Certificates. The beta recognizes the...

Read more