certificate authority

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

An easy fix ignored

Guest post by Chris Eng In the wake of this morning's 25C3 presentation by Alex Sotirov and Jacob Appelbaum, most of the coverage I've read so far has focused on the technical details and real-world impact of their findings. Rightly so -- their paper describing the attack...

Tags: Certificate Authority, Attack, MD5, Security, Ryan Naraine

Blog posts 2008-12-30

New tool cracks most enterprise wireless LANs

If your company or organization runs an enterprise wireless LAN network, I have some troubling news for you.  Odds are high that your current "enterprise-class" wireless LAN deployment is vulnerable to authentication leakage which not only exposes your internal network but all of your server access controls. ...

Tags: Security, Funk Software, WLAN, Server, Tool, Odds, Wireless Client, Certificate Authority, Wi-Fi, Wireless LANs, LANs, Wireless, Networking, George Ou

Blog posts 2008-03-05

Certificate Authority Solution Is a Must in Taiwan Online Trading Services

Capital Securities Corporation is a leader in Taiwan's competitive securities market, with branches throughout Taiwan and in many overseas countries. To ensure it provided the most secure trading platform to all customers, Capital Securities adopted the RSA Digital Certificate solution, RSA BSAFE encryption solution and Chief Telecom's "Global Certificate Authority"...

Tags: RSA Security Inc., Certificate Authority, Certificate Authority Solution

Case studies 2007-06-01

SSL Enabling OWA 2003 Using Your Own Certificate Authority

Why spend money on a 3rd party SSL certificate, when one can create his own for free? In this paper the author will show the reader step by step how one create his own SSL Certificate, which among other things is needed in order to properly secure Outlook Web Access...

Tags: SSL Certificate, SSL, Microsoft Exchange Server 2003, Certificate Authority, Microsoft Outlook Web Access, TechGenix, Ssl/Tls, Authentication/Encryption, Microsoft Outlook, Network Security, Microsoft Office, Security, Office Suites, Software, Networking

White papers 2004-07-20

Dead VeriSign certificates cause glitches

Some Web users run into problems when accessing SSL-encrypted pages. VeriSign says it has been warning of the approaching expiration of its certificates for two years. VeriSign moved to allay confusion on Thursday, after the expiration of some of its certificates that verified it as a certificate-issuing authority. ...

Tags: VeriSign Inc., SSL, Certificate, Certificate Authority, Ssl/Tls, Authentication/Encryption, Security, Matt Loney

News items 2004-01-09

Certificate Solution From Microsoft, Chrysalis-ITS Enables Secure Business Model for Healthcare-Based Certificate Authority

MEDePass Inc., a certificate authority, provides certificates and validation services to enable healthcare providers and payers to exchange information in confidence. Originally, MEDePass' solution used expensive and inflexible proprietary software that raised costs while it limited options. So, MEDePass migrated its software to Windows 2000 Server and the Microsoft .NET...

Tags: Health Care, Microsoft Corp., Certificate Authority, PKI, Microsoft Windows, Authentication/Encryption, Digital Security, Security, Operating Systems, Software

Case studies

Additional Resources

Why Outsourcing Your PKI Provides the Best Value: A Total Cost of Ownership Analysis

Once one conclude that one needs a certificate to exchange information online securely, turn on the security inherent in existing applications, or authenticate to users, computers, VPN, the Web, or buildings, the next point of determination is: how can I do this cost-effectively without forfeiting quality? The answer is simple:...

Tags: Entrust Technologies, Certification Authority, TCO, PKI, Authentication/Encryption, Digital Security, Network Security, Outsourcing, Security, Networking, It Operations, Business Operations, Outsourcing & Subcontracting

White papers 2009-07-02

Deva xFTP 7.0.0.2200 (Windows)

Deva xFTP was designed for Web masters and developers which integrated smart FTP Client with multiple Web master tools, such as Web Link Checker,Sitemap Generator, Certificate Authority, HTML/xHTML Online Editor and HTML/xHTML Validator tools. Whether you're a novice or a WebMaster, Deva xFTP has what you need. Queue files from...

Tags: Web, HTML, Microsoft Windows, Miscosoftware, Site Map Generator, Xhtml, Channel Management, Scripting Languages, Software/Web Development, Web Development, Marketing

Software downloads 2009-05-21

New Mac OS X email worm discovered

New Mac OS X email worm discoveredA bit naive Unfortunately for Linux, social engineering works pretty well unless the user is well informed.At this stage most Linux users [u]are[/u] well informed. But as any OS gains in popularity, the userbase becomes less and less so.Both OSX & Linux are...

Tags: Operating systems, OPEN SOURCE, Also-there, Linux, Unix

Discussion threads 2009-05-07

Securing the SQL Anywhere Monitor With Transport Layer Security (TLS)

The SQL Anywhere Monitor, also referred to as the Monitor, is a web-browser-based administration tool that provides one with information about the health and availability of SQL Anywhere databases and MobiLink servers. This whitepaper explains how to secure communication between the SQL Anywhere Monitor server and the browser when using...

Tags: Monitor, Sybase SQL Anywhere, Mobile Applications, Monitors & Displays, Databases, Hardware, Components, Enterprise Software, Software, Data Management

White papers 2009-05-01

Security+ Prep Course

View Available Dates and LocationsCompTIA's Security+ is the premier vendor-neutral security certification and is included in the approved list of certifications to meet DoD Directive 8570.1 requirements. Our Security+ courseware has received CompTIA Authorized Quality Curriculum CAQC approval. The CompTIA CAQC symbol assures you that all test...

Tags: Washington, CompTIA, CompTIA CompTIA Authorized Quality Curriculum Symbol, PKI, Security

Training 2009-05-01

ECPMF - Enhanced Cisco Presence with Microsoft Foundations

View Available Dates and LocationsLearn how to implement a full Presence solution leveraging the full capabilities of the two leading Unified Communications vendors, Cisco and Microsoft. This course introduces the key Presence architectural components, product features, and points of interoperability between the two leading...

Tags: Unified Communications, Server, Microsoft Corp., Cisco Systems Inc., Integration, Student Pod, Collaboration, Microsoft Windows Active Directory, Directory Services, Enterprise Software, Software

Training 2009-02-01

White House website updated

White House website updatedOne item on the agenda......should be updating everything that ends in ".gov." Seriously, some of the sites are just horrific.RE: White House website updatedCongratulation to president Obama and VP Biden may god bless them and their family. I watched the miracle unfold in front of my eyes....

Tags: Web site development, Blogging, Federal government, Web technology, Vertical industries, White House website, White House, blog, government, Web site

Discussion threads 2009-01-20

MD5/rogue CA attack: The sky is not falling

Guest post by John Viega Today there’s been a lot of buzz about the clever new attack on public key infrastructure from Alex Sotirov and a team of researchers.   In the attack, the bad guy ends up with his own Certification Authority CA that is...

Tags: Certification, Certification Authority, Computer Associates International Inc., Attack, MD5, Ryan Naraine

Blog posts 2008-12-31

SSL broken! Hackers create rogue CA certificate using MD5 collisions

Using computing power from a cluster of 200 PS3 game consoles and about $700 in test digital certificates, a group of hackers in the U.S. and Europe have found a way to target a known weakness in the MD5 algorithm to create a rogue Certification Authority CA, a breakthrough...

Tags: Certification Authority, SSL, Web Browser, Computer Associates International Inc., Certificate, Hacker, MD5, Web Browsers, Internet, Ryan Naraine

Blog posts 2008-12-30

A Large, Globally-Respected U.S. Federal Agency Achieves HSPD-12 Compliance With VeriSign Managed PKI Services

One of the largest U.S. federal agencies is responsible for regular identity verification and authentication checks of its 90,000 employees and contractors under Homeland Security Presidential Directive-12 (HSPD-12) that was adopted in August 2004. HSPD-12 contains a stringent set of requirements concerning validation for all federal employees and contractors. These...

Tags: Agency, VeriSign Inc., HSPD-12, PKI, Security

Case studies 2008-12-22

Zivios open source ID management suite takes on Novell's ZenWorks

One open source startup is taking on Novell in the identity management space. Zivios dubbs itself as an enterprise management company but is not taking on the likes of Zenoss and Hyperic -- at least for now. Network monitoring and workflow features are planned but they...

Tags: Novell Inc., Novell ZENworks, Open Source, OpenLDAP, Identity Management, Zivios, LDAP, Authentication/Encryption, Directory Services, Enterprise Software, Software, Security, Paula Rooney

Blog posts 2008-10-17

US proposes DNS fix: digital signatures

US proposes DNS fix: digital signaturesGold mineExpect that if VeriSign has the key authority, they'll require VeriSign certificates. In effect, this will amount to VeriSign being paid for every domain, and considering the number of domains at stake and VeriSign's rates, that's a [b]very[/b] large sum of money that...

Tags: Domain names, NETWORKING, SECURITY, DNS, VeriSign Inc., e-mail, DNS machine, centralized authority, DNSSEC, digital signature

Discussion threads 2008-10-10

IBM expands cloud computing footprint

IBM expands cloud computing footprintsecurity is a matter of trust==>which cloud will [I] trust?If you want me to trust you, then you must present a certificate with a digital signature, either a person to person, or b your certificate must be signed by a Certificate Authority [i]that I have signed...

Tags: Authentication/Encryption, SECURITY, IBM Corp., cloud computing

Discussion threads 2008-09-24

Interview: Alex Sokirynsky developer of Podcaster

Last night I interviewed Alex Sokirynsky developer of Podcaster on the PowerPage Podcast (he joins in at around the 16:15 mark). It's an interesting listen and I encourage you to check out his excellent app before Apple decides to shut him down. Sokirynsky's Podcaster app was denied entry into the...

Tags: Developer, Distribution, Sokirynsky, Jason D. O'Grady

Blog posts 2008-09-18