Website Security Checks Businesses Must Do in 2026 to Build Digital Trust Go to Website Security Checks Businesses Must Do in 2026 to Build Digital Trust
Safer Internet Day highlights the importance of trust online. Learn...
Driving the future of PKI
Standards leadership, open-source tooling, and operational stewardship for the WebPKI.
Sectigo is not just part of the PKI conversation. We help lead it. Through standards leadership, open-source tools, and trusted infrastructure the WebPKI relies on, we help make the internet safer and more reliable.
What we contribute
Sectigo contributes to the WebPKI through standards leadership, open-source software development, and the operation of trusted PKI infrastructure.
Standards & industry participation
Sectigo helps define the rules that underpin PKI, holding record leadership roles in the CA/Browser Forum and senior positions across global standards bodies.
Open-source contributions
Sectigo is the leader in building and maintaining tools the WebPKI depends on, including crt.sh, pkimetal, ctlint, and Open MPIC. These open-source projects strengthen the webPKI for everyone.
TIE leadership
At Sectigo, trust is operationalized through Technical, Intellectual, and Ethical leadership at every stage of operations.
TIE leadership
Technical, intellectual, and ethical controls for PKI operations
Sectigo’s TIE framework, spanning Technical, Intellectual, and Ethical leadership, shapes how we design, test, and run our certificate infrastructure. Every control, review, and safeguard is built to prevent the operational and compliance failures that have challenged other CAs, while keeping our practices transparent and aligned with the broader internet community.
Technical leadership
Engineering trust through disciplined, standards‑driven operations
Sectigo operates critical public trust infrastructure with a focus on reliability, transparency, and operational rigor. Our technical leadership spans day-to-day PKI operations, formal compliance frameworks, active standards participation, and open-source contributions that support the broader WebPKI ecosystem.
Open‑source contributions
Sectigo is a major contributor to the open‑source technologies the WebPKI depends on. Our work supports certificate authorities (CAs), browser vendors, researchers, and security teams, ensuring transparency, preventing mis-issuance, and keeping the web secure.
Ecosystem‑critical projects include:
Sectigo operates and maintains the industry standard Certificate Transparency log search and reporting tool, relied on by CCADB¹ and major browsers.
¹CCADB is the consortium of browsers enforcing CABF Baseline Requirements, including Chrome, Apple, Mozilla, Microsoft, and Opera.
Sectigo operates and maintains the industry standard Certificate Transparency log search and reporting tool, relied on by CCADB¹ and major browsers.
¹CCADB is the consortium of browsers enforcing CABF Baseline Requirements, including Chrome, Apple, Mozilla, Microsoft, and Opera.
Sectigo created, maintains, and hosts pkimetal, a PKI meta-linter that brings consistency to pre-issuance linting across public CAs.
Sectigo is the primary contributor and owner of the Open MPIC (Multi‑Perspective Issuance Corroboration) project, enabling CA compliance with MPIC requirements.
Sectigo operates two public CT logs, relied upon industry-wide for transparency and auditing.
Sectigo added PostgreSQL support to Trillian, the CT logging open-source project, to increase CT ecosystem resilience.
Sectigo created ctlint and is the owner of both ctlint and certlint, two important linting tools used throughout the industry.
Sectigo supports CA cross-signing to help maintain compatibility across trust environments and ensure smooth certificate chain validation.
Sectigo contributes to the industry’s most popular ACME automation client.
Extensive open‑source code was created by Sectigo to detect weak Debian keys and prevent their use in public certificates.
Sectigo maintains critical CA/BF resources, including mailing lists, wiki, and websites to keep the industry aligned and informed.
Standards & industry participation
Advocating for a secure, usable internet
Sectigo has deliberately taken a leadership role in the standards bodies that shape how public trust on the internet works:
- Five record-setting leadership seats in the CA/Browser Forum, including Vice Chair
- ETSI eIDAS Vice Chair
- Board member and active contributor to the PKI Consortium
- Active participant in X9, C2PA, SunSpec Alliance, and other certificate consortia
Standards‑driven compliance & assurance
Proven controls for consistent, auditable PKI operations
Sectigo operates under globally recognized security and compliance frameworks that govern public trust infrastructure, certificate issuance, and PKI operations.
- WebTrust
- ETSI/eIDAS
- SOC 2/3
- ISO 27001
- PCI-DSS
Sectigo’s proven trust by the numbers
95% +
Self-reported incidents: More than 95% of incidents are self‑reported proactively by Sectigo.
0
Delayed revocations: Sectigo does not deliberately delay revocation and has had no delayed revocations since February 2023.
≤ 7 days
Response time: All questions and public comments posted on Bugzilla receive a response within seven days or less.
5
Leadership seats in the CA/Browser Forum: A record-setting level of influence, including a Vice Chair role, shaping policy, ballots, and working group direction.
≤ 2 weeks
To resolution: The majority of incidents are resolved from initial report to closure within two weeks.
0
Missed CPR deadlines : Sectigo has not missed Certificate Problem Report (CPR) handling deadlines in the past five years.
Intellectual leadership
Advancing PKI knowledge through research, standards, and ecosystem expertise.
Sectigo helps shape the future of PKI through standards leadership, industry engagement, and education. From global policy forums to award-winning media and post-quantum research, our contributions inform how trust evolves across the ecosystem.
Industry forums & events
Active participation at industry forums including RSAC, Gartner, ENISA, ETSI, PQC events, and CA/BF in-person meetings.
Research & thought leadership
Ongoing publication of webinars, whitepapers, blogs, and operational guidance advancing PKI best practices across the community.
Root Causes podcast
Webby Award Honoree podcast with more than 600 episodes and over 600K listeners.
Sectigo Quantum Labs
Industry-first microsite dedicated to post-quantum cryptography education and sandbox certificate testing.
Ethical leadership
Strict adherence to CA/BF Baseline Requirements, root programs, ETSI standards, WebTrust compliance, and global regulations.
Proactive incident disclosure through Bugzilla, including self-reporting, thorough root cause analysis, and timely remediation.
Continuous monitoring of industry CA incidents, with internal reviews to prevent repeat ecosystem failures.
Commitment to fair, lawful, and equitable treatment of employees, contractors, and ecosystem partners worldwide.
Promoting the fundamental truth that all CAs and TSPs, as stewards of public trust, need to hold themselves to a higher standard than minimal compliance.
Promotion of the idea of ethical CA behavior through industry standards bodies, press articles, speaking opportunities, and more.
Explore our latest insights
Root Causes 582: New Research Drastically Cuts Number of Qubits for Cryptographic Relevance Go to Root Causes 582: New Research Drastically Cuts Number of Qubits for Cryptographic Relevance
New research indicates that the number of qubits necessary to...
What Are Common Mark Certificates? CMCs Explained Go to What Are Common Mark Certificates? CMCs Explained
Discover how Common Mark Certificates enable you to display your...
Root Causes 581: A Timeline for Deprecation of Manual DCV Methods Go to Root Causes 581: A Timeline for Deprecation of Manual DCV Methods
By CABF ballot all manual methods of Domain Control Validation...
When Digital Trust Breaks: How Shrinking Certificate Lifespans Expose Hidden Security Debt Go to When Digital Trust Breaks: How Shrinking Certificate Lifespans Expose Hidden Security Debt
Shrinking certificate lifespans expose hidden security debt, forcing organizations to...
Why Enterprises Should Start Establishing a Cryptography Bill of Materials (CBOM) Now Go to Why Enterprises Should Start Establishing a Cryptography Bill of Materials (CBOM) Now
A CBOM gives enterprises visibility into cryptographic assets, improving governance,...
Root Causes 580: Top Use Cases for Hybrid Certificates Go to Root Causes 580: Top Use Cases for Hybrid Certificates
We go over the qualities in abstract of a use...
What Is BIMI and How Does It Strengthen Inbox Security? Go to What Is BIMI and How Does It Strengthen Inbox Security?
BIMI boosts inbox security and brand trust by displaying verified...
Root Causes 579: Make Cryptography Boring Again Go to Root Causes 579: Make Cryptography Boring Again
In this episode Jason declares that we must make cryptography...
Item 1 of 9
Advance trust together
Explore ways to contribute, stay informed, and collaborate with Sectigo to strengthen the global trust ecosystem.
Stay informed
Follow Sectigo webinars, blogs, whitepapers, and award-winning podcasts to stay ahead in PKI and security best practices.