Category: SSL/TLS

Removal of the Client Authentication EKU from TLS Server Certificates – What You Need to Know

Overview Beginning September 15, 2025, SSL.com’s TLS server certificates will be issued without including the Client Authentication extended key usage (EKU) extension. This change is

What is HTTPS?

Discover how HTTPS secures online communications through encryption, authentication, and integrity checks, ensuring a safe browsing experience.

An Introduction to Certification Authority Authorization (CAA)

SSL.com’s in-depth look at Certification Authority Authorization (CAA) and how it can help protect your website, your business – and your online reputation.

Created by the Internet Engineering Task Force (IETF) and described in RFC 6844, CAA lets the owner of a domain name authorize designated and specific Certification Authorities (CAs) to issue SSL certificates for their domain name.

Subordinate CAs and Why You Might Need One

Learn about Subordinate Certificate Authorities (Sub-CAs), their crucial role in PKI infrastructure, key benefits for organizations, and implementation best practices for secure certificate management.

Install an SSL Certificate on a Tomcat or Java-based Web Server

How to install an SSL Certificate on a Java-based Web Server.

Understanding CAA Check Failures and How to Resolve Them

Overview Certification Authority Authorization (CAA) records allow domain owners to specify which Certificate Authorities (CAs) can issue TLS certificates for their domains. CAA mandates that

SSL.com to Deprecate Domain Contact-Based Email Domain Control Validation on December 2, 2024

Starting December 2, 2024, the WHOIS-based email domain control validation (DCV) method to obtain SSL/TLS certificates will no longer be accepted by SSL.com. It has

SSL Certificate Expiration Guide

Why do SSL Certificates Expire? Think of an SSL certificate as a passport for your website, verifying its identity and ensuring secure connections. Just as

What Is a Certificate Authority (CA)?

Certificate authorities (CAs) are critical in securing online communications and identities. But what exactly does a CA do? And how do they establish trust online?

How to install a TLS/SSL Certificate to the Oracle Wallet Manager

Introduction Oracle Wallet Manager is an application used to manage and edit security credentials in Oracle wallets. A wallet is a password-protected container that stores

Manually Generate a Certificate Signing Request (CSR) Using OpenSSL

How to manually generate a Certificate Signing Request (or CSR) in an Apache or Nginx web hosting environment using OpenSSL.

How to Add OV Recipient Info to Certificates

Document signing certificates can be validated and issued either with an “IV” (individual validation) or “OV” (organization validation). During the certificate creation process, the the

Acceptable Business Listings for Validation

Validation and Callback Issuing a digital certificate is a carefully-structured process which includes you, the customer, providing pertinent information confirming your identity and choosing the

Delegated Credentials for TLS

Terminating a TLS connection requires using a certificate’s private key. As a result, the private key needs to be stored at every single server utilized

Exchange Server SSL Certificate Guide

SSL.com has put together information you will find useful if you’ve been tasked with implementing SSL/TLS security with your company’s Exchange servers.

Business Email Compromise and S/MIME Certificates

There are a variety of scams in which attackers hack into a company’s emailing systems or create deceiving email templates in order to convince employees

Create a .pfx/.p12 Certificate File Using OpenSSL

How to create a .pfx/.p12 certificate from the command line using OpenSSL.

What is HTTPS?

HTTPS (Hypertext Transfer Protocol Secure) is a secure version of the HTTP protocol that uses the SSL/TLS protocol to encrypt data sent between a web browser and a website.

Using Digital Certificates and Zero Trust in Hybrid Workplaces

The COVID- 19 pandemic has accelerated the transformation of the workplace into a hybrid of remote work and traditional office. This article tries to shed

Why Law Firms Should Invest More in Cybersecurity

A 2020 survey by the American Bar Association found that 29% of the participating law offices encountered some form of a cybersecurity threat, while 21%

Generate ACME Credentials for Reseller Customers

SSL.com’s Reseller partners can now generate ACME credentials for their customers with the SWS API.

Renewing EV, OV, and IV Certificates

How to renew Extended Validation (EV), Organization Validation (OV), and Individual Validation (IV) certificates from SSL.com.

Order Free 90-Day SSL/TLS Certificates with ACME

How to order free 90-day SSL/TLS certificates from SSL.com with the ACME protocol.

How to Create a .pfx File

How to combine a private key with a .p7b certificate file to create a .pfx file on Windows Internet Information Server (IIS).

Guide to TLS Standards Compliance

Guide to TLS standards for 2021, including HIPAA, NIST SP 800-52r2 guidelines, and the Payment Card Industry Data Security Standard (PCI-DSS)

Category: SSL/TLS

We’d love your feedback