Security Archive

At the (heart) bleeding edge


The news about a possibly very nasty bug in the popular OpenSSL library got my attention almost weeks ago which hit out of the blue like a bombshell. Dubbed Heartbleed, this bug can potentially leak private keys installed at servers which make use of the affected libraries I learned, and shortly after that the first […]

Cyber War


It wasn’t entirely obvious to me, when we made the decision some six years ago to implement a certification authority that does things differently, that we’d end up against a country sponsored cyber-war. And even though I incidentally called this very blog “Join the Revolution“, I didn’t had in mind to have anything to do […]

Strictly Opera


Long after the major software vendors which produce browsers and mail clients already supported the StartCom root certificate by default, users of the Opera browser couldn’t enjoy the benefits of free and cheap SSL certificates easily. And I myself had to postpone an article I intended to write about Opera for more than two years […]

Are you also reading Toiletpaper?


When buying a newspaper, for what exactly are you paying? For the paper or the content within the paper?
Well, if it would be for the paper, you could probably read last years newspaper much cheaper. Or perhaps you could save yourself the hassle and simply read the toilet paper in the morning instead, it wouldn’t […]

Securing the Enterprise


Securing internal networks of enterprises is a very important task - for that matter any Intranet is. Today, the threats are manifold and are coming from various directions, being it through the corporate firewalls, VPN gateways, WiFi access points, compromised computers and laptops or employees and third party contractors, to mention only the most obvious. […]

Beat the Drum: Open Web needs to be Secure!


Mozilla is beating the drum for an Open Web at their new project page “Drumbeat“. Mitchell Baker, the Chair of the Mozilla Foundation has been regularly blogging about a more Open Web and what it might mean for us. There is lots of talk about openness, decentralization, freedom and public resources of the public Internet, […]

Refute the FUD


In my capacity it’s my job to counter a few baseless claims which some use in order to try to spread Fear, Uncertainty and Doubt (FUD) regarding the digital certificates which StartCom issues for free without charge. This is a response to Sebasti√°n Bortnik, David Harley and Dan Raywood regarding their articles I found recently […]

Faster, Longer, Better and…Cheaper


All those superlatives reflect really what the StartCom Certificate Authority really tries to present and deliver to its subscribers. Considering that StartCom provides legitimate, renewable digital SSL certificates with a validity period of one year free of charge, it’s hard to argue that it can get any cheaper. We don’t have to argue - they […]

The “e” of the Internet


Ever since Mozilla’s Firefox appeared on the scene and ignited renewed competition,¬† development and innovation of browsers, Microsoft’s Internet Explorer has been loosing market share to its competitors. Depending on the source for browser statistics, the Explorer’s market share went anywhere from over 90% in the early years of this decade down to 68% and […]

SSL Flaw by (Browser) Design?


A while ago, the two security “white hats” Alexander Sotirov and Mike Zusman announced that they are going to publish a tool for exploiting EV SSL secured sites at the Black Hat Security Conference at the end of this month. Some sites reported the alleged attack on EV SSL secured sites as a means to […]