Author Archives for Eddy Nigg

SSL Flaw by (Browser) Design?


A while ago, the two security “white hats” Alexander Sotirov and Mike Zusman announced that they are going to publish a tool for exploiting EV SSL secured sites at the Black Hat Security Conference at the end of this month. Some sites reported the alleged attack on EV SSL secured sites as a means to […]

It’s all about the Moon


During the next few days he won’t be really seen a lot and nevertheless, earth closest neighbor and companion will play a major role. Tomorrow the moon will obscure the sunlight in some regions here on earth, resulting in a spectacular solar eclipse. It will be perhaps the first time that I’m sorry that I’m […]

Competition Spurs Innovation


How times have changed since the number one version of the Firefox browser debuted and for the first time since the Netscape era produced some excitement.  Because shortly thereafter Microsoft decided to invest into development of a new, more advanced version of its own browser after having stagnated with Internet Explorer 6 for years. And […]

Sign your Code


Just recently the new Firefox version 3.5 was released with many new features, whistle and bells….native video and audio support being one of them. Porn private browsing mode and super fast rendering just another. If you haven’t updated and tried the latest and greatest from the house of Mozilla, I highly recommend to do that […]

Securing a Revolution


It’s my own and StartCom’s company policy to refrain from voicing personal opinions regarding political matters. Otherwise however StartCom takes a clear stance when proclaiming:
We believe in the right to protect and secure information between two entities without discrimination of race, origin and financial capabilities.

The Geek Factor


I don’t need any stinkin’ CA issued certificates for my web sites, for this I do -  openssl 123 …
So goes the usual rant by geeks, hackers and open source enthusiasts against the certification authorities and their accomplices Internet Explorer, Firefox and Co.. Why is that and did anything change?

The Race Is On - You Won


The competition in the digital certification business is preparing for StartCom’s entry with its super-cheap EV SSL offerings. Proclaims a director of a well known certification authority:
“EV SSL certificates are no longer an expensive premium for Web security; they are a necessary tool to help thwart phishing, man-in-the-middle and other malicious fraud attacks”

CA/Browser Forum


Since this weekend the StartCom Certification Authority is officially a member of the CA/Browser Forum. This forum is a closed group of commercial certification authorities and software vendors - in particular browser vendors - which was founded sometime in 2006. At a previous occasion the StartCom CA was denied participation, but having now met their […]

Positive Indicators


Phishing attacks seldom use SSL certificates for their fake sites resembling Paypal, eBay or whatever, because they look as good without it. So far this apparently just worked fine because a somewhat careless user simply doesn’t pay attention to the microscopic indicators the browsers used to give us in the past. Well, that’s perhaps an […]

Tweet - Twits - Twitter?


Whatever the micro-blogging is actually called, everybody seems to be doing it. No, I didn’t join all those Web 2.0 social sites like Facebook, MySpace, LinkedIn, but Twitter seems to be different. And highly popular too.
I’m not sure if anybody would really care about what I’m doing right now, but it seems that Twitter is […]

Eddy Nigg

Still have to write something smart here. But for now: I'm the founder and chief operations officer (COO) and chief technical officer (CTO) of StartCom.