Mar 13, 2012
What’s Next for Certificate Technology
X.509 (SSL) certificates have been securing websites and Web content for years. So why are we seeing a breakdown in the technology lately? One of the reasons is that X.509 technology has not changed much since its inception. Meanwhile, the security infrastructure around certificates is not always as strong as it should be, and increasing levels of automation are creating holes in the certificate-issuance process. A number of protocols and practices have been developed to help fill the gaps, including the use of internal certificate authorities.
In this report we will examine the current and future state of certificate technology and recommend what organizations can do to keep themselves and their customers safe. (S4400312)