All posts by Alexander Andronkin

Cipher suites and TLS protocols

Commercial SSL certificates are often described in quite simple terms, for the sake of clarity. This is so the basic idea behind them can be understood by everyone, not just those with a web tech background. But when a web browser connects to a website with an SSL certificate, there’s actually a lot going on behind the scenes in order to establish a secure HTTPS connection. Today we’re going to focus on an integral part of that connection: Cipher Suites. 

Read more

Can an SSL be hacked?

Let’s answer this question right off the bat: it’s unlikely. Though not impossible, the chances of an SSL certificate itself being hacked is incredibly slim. However, just because you have an SSL installed, that doesn’t mean your website isn’t vulnerable in other areas. Misunderstandings about an SSL being “hacked” tend to come from confusion about what an SSL actually does for a website. Let’s clear up some of that confusion, shall we?

Read more

Possible issues with the SHA-1 root sunset

On May 30, 2020, Sectigo’s AddTrust External SHA-1 CA Root will expire. What does this mean and do you need to worry about it? In all likelihood, if you are using a device with up-to-date software, you don't have to worry. However, if you use the specific, aforementioned root, you will need to update applications or installations dependent on it by May 2020 or you may be at risk of outages or having error messages displayed. 

Read more

Insecure content and how to fix it

It’s a pain to go through the process of installing an SSL certificate only to find that your site has “insecure content” and now won’t load on certain web browsers. When you try to access it, browsers may give you a message along the lines of “this page contains both secure and non-secure data”. Perhaps understandably, people tend to automatically go blame the SSL certificate itself for causing the problem. After all, wasn’t the SSL supposed to make their site more secure than ever?  However, the issue of insecure content points to a problem with a website’s coding rather than an SSL.

Read more

What is SSL Secure Site Seal?

SSL Secure Site Seal
When you purchase an SSL certificate from a trusted Certificate Authority you have the option of putting a secure site seal on any page of your site. A site seal is essentially a small graphic logo that features the name of the Certificate Authority you bought your SSL from. It will indicate in some manner that your website has been validated and secured.

Read more

How to find your Private Key

A common question we get here at is “where is my Private Key?” The answer to this can vary and is dependent on the kind of SSL activation you opted for. To clear up any confusion, this article will discuss the main methods of SSL activation and where the Private Key is generated and saved during each one.
Read more