Here at Trustico, we are often asked by our customers if we offer TLS certificates, as our website only advertises ‘SSL certificates’. This is a completely reasonable question for those not well-versed in cryptographic protocols. After all, if your web host asks you for a TLS certificate and you see search results mostly for SSL […]
TLS
Why haven’t I received my validation email?

What is a validation email? A validation email, referred to by Trustico as an approver email, is a form of Domain Control Validation (DCV) which proves ownership of a domain when applying for an SSL certificate. Where is it sent? As per CA/B Forum rulings that dictate the SSL certificate industry, the approver email can […]
How to correctly generate a CSR for SSL

An SSL certificate can only be generated with a CSR. It contains all the information required for the certificate, such as the domain name and country code. CSR stands for Certificate Signing Request. What is a CSR? A CSR is a block of encrypted text you send to the Certificate Authority (CA) to generate an […]
WHOIS and SSL/TLS certificate validation

Domain Control Validation (DCV) must be completed before an SSL/TLS certificate can be issued. This proves to the issuing Certificate Authority (CA) that the individual applying for the SSL/TLS certificate has control over the domain they are securing. An email to a WHOIS registered email address is a common way of doing so. Approver email […]
Will my SSL Certificate secure the www. subdomain?

It’s safe to say that www. is the most commonly secured subdomain on the World Wide Web. Many domain owners have their www. subdomain as an exact copy of the root domain due to the commonness of searching for a site by beginning with ‘www.’. Naturally, when securing a domain with SSL, one might wonder […]
Understanding SAN certificates

A SAN certificate is an SSL/TLS certificate which hosts multiple domains and subdomains on the single certificate. It is often called a Multi Domain certificate. They are used for a number of reasons; from server limitations to sheer convenience. What is a SAN? To better understand what a SAN SSL/TLS certificate is, we will need […]
How do I find my Private Key (RSA Key)?

What is a Private Key? A Private Key is one part of a pair of keys used for text encryption and decryption, the other being the public key (the SSL/TLS certificate). With SSL/TLS certificates, incoming and outgoing information goes through the public key and is encrypted into nonsensical code. The public key is viewable and […]
Sectigo removes CRL support in newly issued certificates

Sectigo (formerly Comodo CA) has removed CRL distribution points on newly issued Domain Validated (DV) SSL/TLS certificates. I speculate that Organization Validated (OV) and Extended Validation (EV) SSL/TLS certificates will soon no longer contain CRL distribution points either. What is CRL? A Certificate Revocation List (CRL) is a list of SSL/TLS certificate serial numbers which […]
TLS 1.3, SSL, and why you should upgrade

At Trustico®, a lot of people ask if the SSL certificates we sell are TLS 1.3 compliant. This is a fair question, as many are understandably unaware of the differences between SSL and TLS, and how security certificates work with these protocols. What is TLS? TLS (Transport Layer Security) evolved out of SSL (Secure Sockets […]
ICANN urges full implementation of DNSSEC

The Internet Corporation for Assigned Names and Numbers (ICANN), a nonprofit organization dedicated to collaboration towards a secure and globally unified internet, has reacted to increasing reports of attacks on DNS infrastructure by urging registrars to adopt DNSSEC. What is ICANN?An internationally organized corporation that has responsibility for IP address space allocation, protocol identifier assignment, […]