Posts by admin

CASC Announces Launch of London Protocol to Improve Identity Assurance and Minimize Phishing on Identity Websites

Posted by on June 27, 2018 in Press Releases | 0 comments

LONDON – (June 27, 2018) – The Certificate Authority Security Council (CASC), an advocacy group committed to the advancement of the security of websites and online transactions, announced at the CA/Browser Forum event in London the launch of the London Protocol – an initiative to improve identity assurance and minimize the possibility of phishing activity on websites encrypted with organization validated (OV) and extended validation (EV) certificates, which contain organization identity information (Identity Certificates). Following the recent rise in phishing attacks, five certificate...

Read More

The London Protocol

Posted by on June 27, 2018 in Initiative | 0 comments

The objective of The London Protocol is to improve identity assurance and minimize the possibility of phishing activity on websites encrypted by OV (organization validated) and EV (extended validation) certificates (together referred to as “Identity Websites”). The London Protocol reinforces the distinction between Identity Websites making them even more secure for users than websites encrypted by DV (domain validated) certificates. That security feature can then be utilized by others for their own security purposes, including informing users as to the type of website they are visiting and...

Read More

Fortify Provides a More Secure Web Experience for Certificates and Smart Cards

Posted by on June 19, 2018 in Press Releases | 0 comments

San Francisco – June 19, 2018 – The Certificate Authority Security Council (CASC), an advocacy group committed to the advancement of web security, today announced that Fortify, an open source application sponsored by the Council, is now available for Windows and Mac.  Fortify, a free app, connects a user’s web browsers to smart cards, security tokens, and certificates on a user’s local machine.  This allows users to generate X.509 certificates in their browser, replacing the loss of key generation functionality. “Fortify is a great open source project, made possible through collaboration...

Read More

Leading Certificate Authorities and Microsoft Introduce New Standards to Protect Consumers Online

Posted by on December 8, 2016 in Press Releases | 366 comments

The CASC’s Minimum Requirements for Code Signing Certificates enables a common vetting process for all CAs San Francisco –December 8, 2016 – the Certificate Authority Security Council (CASC), an advocacy group committed to the advancement web security, today announced the Code Signing Working Group has released new Minimum Requirements for Code Signing for use by all Certificate Authorities (CA). These requirements represent the first-ever standardized code signing guidelines. Code signing is the method of using a certificate-based digital signature to sign executables and scripts in order...

Read More

Code Signing Baseline Requirements

Posted by on November 30, 2015 in Blog | 0 comments

You may have heard that the CA/Browser Forum is getting ready to approve Baseline Requirements for Code Signing certificates. But why is this important? Let’s back up and get some background on code signing.  Software code that is digitally signed indicates to the user that the code has not been tampered with since it was signed. It also provides authenticity as to who signed it and when.  With the advent of malware, it’s important to insure that the code which was written by the developer is the same code which you downloaded and installed into your computer or mobile phone. A digital...

Read More