More than a year after West Virginia officials began issuing marriage licenses to same-sex couples, state birth certificates for adopted children still list “mother” and “father” next to the blanks for the parents’ names. Unlike other states that are resisting changing the certificates, the West Virginia Department of Health and…
6 people, including a DMV clerk, accused of selling Puerto Rican birth certificates
Source: National Cyber Security – Produced By Gregory Evans Six people, including a California DMV clerk in the El Monte office, are facing federal identity theft charges after prosecutors say they sold Puerto Rican birth certificates and matching Social Security numbers to people seeking new identities. Members of the reported identity theft…
Apple killing ad blockers that install root certificates
Apple has had a few security issues popping up recently between new iOS malware variants that attack both jailbroken and non-jailbroken devices, and now there is an issue with the new content blocker system in iOS 9. It seems that some content blocker apps have been installing root certificates on…
Lieberman, Collins question electrical grid digital security certificates
Mark Rockwell Top Priority Sector: cyber_security In a letter to federal energy regulators, the leaders of the Senate Homeland Security Committee questioned the security of digital certificates used by companies to access the electric industry’s online business systems. Committee chairman […] ↓ Read the rest of this entry… View full…
Self-signed SSL certificates can be secure
Given the recent problems with SSL certificates provided by third party companies, one has to wonder why we place all this trust in these vendors. We allow them to process and produce “trusted” certificates for our websites, but in the end even Google, Microsoft and state and federal governments are…
Mozilla asking CAs to revoke SSL-spying certificates
Mozilla plans to ask all certificate authorities to review their subordinate CA certificates and revoke those that could be used by companies to inspect SSL-encrypted traffic for domain names they don’t control. The plan, for which details are still being worked out, is Mozilla’s response to Trustwave’s recent claim that…
Google Chrome will no longer check for revoked SSL certificates
Google plans to remove online certificate revocation checks from future versions of Chrome, because it considers the process inefficient and slow. Browsers currently check if a website’s SSL certificate has been revoked by its issuing Certificate Authority (CA) when trying to establish an HTTPS connection. These checks are done by…
Managing X.509 certificates by spreadsheet too risky, says Gartner
Poor management of the X.509 certificates that underpin SSL security could explain a growing number of mysterious system outages, a Gartner report has suggested. The biggest problem is simply the number of certificates which many businesses find themselves using for e-commerce and machine-to-machine communication which according to Gartner many still…
Managing X.509 certificates by spreadsheet risky, says Gartner
Poor management of the X.509 certificates that underpin SSL security could explain a growing number of mysterious system outages, a Gartner report has suggested. The biggest problem is simply the number of certificates which many businesses find themselves using for e-commerce and machine-to-machine communication which according to Gartner many still…
SSL certificates under fire as hacking incidents pile up
A year ago nobody could have cared less about certificate authorities (CAs), a dull but critical part of Internet that makes it possible for web servers to authenticate themselves to other computers, including ordinary browsers, using SSL. But every year has its ‘threat nobody saw coming’ and in 2011 it…