Blog about digital certificates, CAs, and security
Safer Software with Signing Transparency: What's New from Microsoft
Microsoft introduced Signing Transparency — a cryptographically verifiable transparent log that increases trust in software and protects against attacks on the software supply chain. Learn how this technology is changing the way signed artifacts are verified.
Nov 28, 2025 | Jindřich ZechmeisterFrom the latest articles
ACME and EAB: Support for Web Servers (Status as of 10/2025)
Learn how to use ACME and EAB to automate TLS certificates. We compare support on Nginx, Apache, LiteSpeed, and others, tips for DigiCert, and hassle-free implementation.
Oct 14, 2025 | Jindřich ZechmeisterClient authentication in TLS certificates will soon end.
DigiCert has announced that it will gradually discontinue support for the extended use of Client Authentication in its public TLS certificates. The change does not affect the normal use of certificates for HTTPS, but will affect scenarios such as Mutual…
Jul 25, 2025 | Jindřich ZechmeisterComparison of ACME, EST, SCEP, and CMPv2 Protocols for Certificate Acquisition
Automation of digital certificate management is crucial for modern IT environments – from web servers and mobile devices to enterprise PKI. There are several protocols used to obtain certificates from certificate authorities (CAs). In this article,…
Jun 25, 2025 | Jindřich ZechmeisterGoogle Chrome will now allow automatic changing of breached passwords.
Password management is often one of the most frustrating yet crucial aspects of online security for many users. That’s why Google has decided to take user protection to the next level. At the Google I/O 2025 conference, the company announced that Chrome…
Jun 11, 2025 | Jindřich Zechmeister