SSL/TLS Certificates to Move to 47-Day Validity by 2029
The CA/Browser Forum has officially approved a phased reduction in SSL/TLS certificate lifespans, aiming for a maximum validity of just 47 days by 2029. The
Read More »
SSL Support Team
How to Verify an RSA Private Key Matches a CSR and Certificate
A comprehensive guide explaining how to verify that your RSA private key matches your Certificate Signing Request (CSR) and SSL/TLS certificate using OpenSSL commands and modulus comparison techniques.
Read More »
Why You Need a Backup Certificate Authority
Learn how backup certificate authority solutions prevent service disruptions from CA compromises, revocations, or distrusts.
Read More »
Removal of the Client Authentication EKU from TLS Server Certificates – What You Need to Know
Overview Beginning September 15, 2025, SSL.com’s TLS server certificates will be issued without including the Client Authentication extended key usage (EKU) extension. This change is
Read More »
Install SSL Certificates on Zeus Webserver
This article will provide detailed instructions on installing certificates on the Zeus Webserver. Upon receiving your certificates, you will have three files. Begin by opening
Read More »
Supported Cloud HSMs for Document Signing and EV Code Signing
SSL.com supports AWS CloudHSM, Azure Dedicated HSM, and Google Cloud HSM for issuance of EV Code Signing and Document Signing certificates.
Read More »
What Is a CDN?
Learn how Content Delivery Networks (CDNs) optimize website performance by reducing latency, improving load times, and enhancing security through distributed server systems worldwide.
Read More »
The Essential Guide to Multi-Domain (UCC/SAN) Certificates
Learn about multi-domain (UCC/SAN) certificates that secure multiple domains with a single SSL/TLS certificate. Discover benefits, implementation steps, best practices, and troubleshooting tips for efficiently managing your organization’s domain security needs.
Read More »
Multi-Perspective Issuance Corroboration (MPIC) Arrives
On March 15, 2025, SSL.com will implement an initial deployment of MPIC. This update is in support of the requirements defined in Ballot SC-067 v3
Read More »
How to Locate the Certificate Fingerprint and Serial Number
Knowing your certificate’s fingerprint and serial number is highly useful when requesting a certificate to be revoked. This information is usually required by the Certificate
Read More »
Sharing SSL Certificates Across Multiple Servers
Securely deploy SSL/TLS certificates on multiple servers using PFX or unique keys. Explore automation with ACME and SSL.com management solutions.
Read More »
Sharing SSL Certificates Across Multiple Servers
Learn how to efficiently share SSL.com certificates across multiple servers using either PFX files for simplicity or unique certificates for enhanced security.
Read More »
What is HTTPS?
Discover how HTTPS secures online communications through encryption, authentication, and integrity checks, ensuring a safe browsing experience.
Read More »
Enabling an Access Password for Client Authentication Certificates
This guide shows how to install a Client Authentication certificate in the Windows certificate store and generate an access password for the certificate. Normally a
Read More »
Essential Ways to Secure Your SSH Configuration
A comprehensive guide to securing SSH configurations through 8 essential practices, including key-based authentication, root login disabling, encryption, updates, 2FA, logging, access controls, and key management. Ideal for system administrators and security professionals implementing SSH best practices.
Read More »
What is DNS over HTTPS (DoH)?
DNS over HTTPS (DoH) encrypts DNS queries using HTTPS, enhancing internet privacy and security by preventing ISPs and malicious actors from monitoring or manipulating your web browsing. Learn how it works, its benefits, and how to implement it across different browsers and systems.
Read More »
An Introduction to Certification Authority Authorization (CAA)
SSL.com’s in-depth look at Certification Authority Authorization (CAA) and how it can help protect your website, your business – and your online reputation.
Read More »
Created by the Internet Engineering Task Force (IETF) and described in RFC 6844, CAA lets the owner of a domain name authorize designated and specific Certification Authorities (CAs) to issue SSL certificates for their domain name.
Digtally Sign a PDF in Adobe Acrobat Reader using a Yubikey Token
This guide will show you how to sign a PDF document in Adobe Acrobat Reader with a document signing certificate from SSL.com. These instructions were
Read More »
Healthcare Cyberattacks Are on the Rise – Digital Certificates Can Help
Learn how digital certificates protect healthcare organizations from cyberattacks by securing patient data, medical devices, and communications while ensuring HIPAA compliance. Discover essential certificate types and implementation strategies for robust healthcare cybersecurity.
Read More »
Why Law Firms Should Invest More in Cybersecurity
Explore why law firms must prioritize cybersecurity investments today. Learn about unique vulnerabilities, rising cyber threats, essential security measures, and the business case for protecting sensitive legal data.
Read More »
What is Common Name? Understanding a Key Component of Digital Certificates
Learn about Common Name (CN) in digital certificates, its role in SSL/TLS security, and best practices for implementation. Understand how CN works with modern SAN fields, certificate requirements, and future trends in digital certificate management.
Read More »
Subordinate CAs and Why You Might Need One
Learn about Subordinate Certificate Authorities (Sub-CAs), their crucial role in PKI infrastructure, key benefits for organizations, and implementation best practices for secure certificate management.
Read More »
Install an SSL Certificate on a Tomcat or Java-based Web Server
How to install an SSL Certificate on a Java-based Web Server.
Read More »
Understanding CAA Check Failures and How to Resolve Them
Overview Certification Authority Authorization (CAA) records allow domain owners to specify which Certificate Authorities (CAs) can issue TLS certificates for their domains. CAA mandates that
Read More »
OCSP Stapling: Secure and Efficient Certificate Validation
Learn how OCSP stapling enhances SSL/TLS certificate validation by improving performance, privacy, and reliability, and discover how to implement it on your server.
Read More »
