-
Learn More
Sectigo leads Open MPIC project to bolster certificate security against BGP threats
Press Release from Sectigo
Press Release May 20, 2025SCOTTSDALE, Ariz., — May 20, 2025 — Sectigo, a global leader in digital certificates and automated Certificate Lifecycle Management (CLM), in collaboration with researchers at Princeton University, today announced its pivotal role in the Open MPIC (Multi-Perspective Issuance Corroboration) Project. Sectigo’s Principal Architect, Dmitry Sharkov, serves as the project’s lead architect in developing an open-source tool that helps Certificate Authorities (CAs) comply with new CA/Browser Forum requirements aimed at enhancing the security of digital certificate issuance against Border Gateway Protocol (BGP) attacks.
-
Learn More
Open MPIC: Open-source security for domain validation
Blog Post from Sectigo
Blog Post May 19, 2025Open MPIC helps CAs meet MPIC rules with global validation, quorum logic, and open-source flexibility built by Sectigo and Princeton.
-
Listen Now
EPISODE 488
Broadcast Date:
April 22, 20256 minutes
Podcast Apr 22, 2025Root Causes 488: CABF Face-to-Face Meeting Update
We explain the major news items from the most recent CA/Browser Forum face-to-face meeting in Tokyo. Topics include MPIC, 47-day certificate term, and Temporary Restraining Orders.
-
Learn More
Sectigo at CA/Browser Forum Tokyo 2025: Key Takeaways
Blog Post from Sectigo
Blog Post Apr 14, 2025Sectigo joined CA/B Forum Tokyo 2025 to shape digital trust. Highlights: 47-day certs, Open MPIC, and legal challenges in web security.
-
Learn More
CA/Browser Forum passes ballot to reduce SSL/TLS certificates to 47 day maximum term, endorsed by Sectigo
Press Release from Sectigo
Press Release Apr 14, 2025SCOTTSDALE, Ariz., — April 14, 2025 — Sectigo, a global leader in digital certificates and automated Certificate Lifecycle Management (CLM), today announced that the CA/Browser (CA/B) Forum ballot it endorsed to reduce the maximum validity term of SSL/TLS certificates to 47 days by 2029 has passed. This groundbreaking move to shorten digital certificate lifespans seeks to enhance online security, drive automation in certificate management, and ready systems for quantum computing challenges by improving crypto agility.
-
Listen Now
EPISODE 465
Broadcast Date:
February 7, 202542 minutes
Podcast Feb 07, 2025Root Causes 465: Twelve Bugzilla Sins for CAs to Avoid
In the wake of the Bugzilla Bloodbath, we list and describe twelve sins CAs commit on Bugzilla and its like, why they're detrimental, and how CAs should avoid them.
-
Listen Now
EPISODE 459
Broadcast Date:
January 24, 202512 minutes
Podcast Jan 24, 2025Root Causes 459: 2024 Lookback - Shorter Certificate Lifespans & DCV
2024 set in motion major changes for certificate lifespans and DCV. In this episode we discuss the Apple 47-day proposal, stepping down certificate term, public versus private CA use cases, DCV reuse periods, MPIC, WHOIS, and other topics.
-
Listen Now
EPISODE 451
Broadcast Date:
December 26, 202435 minutes
Podcast Dec 26, 2024Root Causes 451: A Year in CABF Ballots
It was a crazy year for CA/Browser Forum activity, with nearly three times the normal number of ballots. Guest Martijn Katerbarg goes over the 32 CABF ballots from 2024.
-
Listen Now
EPISODE 448
Broadcast Date:
December 17, 202426 minutes
Podcast Dec 17, 2024Root Causes 448: The Privilege of Being a Public CA
We go over Tim's September 2024 keynote speech at ENISA CA Day, "The Privilege of Being a Public CA."
-
Listen Now
EPISODE 446
Broadcast Date:
December 12, 202413 minutes
Podcast Dec 12, 2024Root Causes 446: Sectigo Assumes Five CABF Offices
Tim has stepped into the position of vice-chair of the CA/Browse Forum, and Sectigo now holds five chair or vice-chair positions in that body. We explain how leadership is chosen, the offices Sectigo holds today, and some of our vision for CABF in the next two years.
-
Listen Now
EPISODE 442
Broadcast Date:
November 25, 202422 minutes
Podcast Nov 25, 2024Root Causes 442: Apple Proposal to Reduce SSL Lifespan Updated
Apple has published an updated draft to its proposal for shortening the lifespan of SSL certificates, including a final term of 47 rather than 45 days.
-
Listen Now
EPISODE 414
Broadcast Date:
August 23, 202412 minutes
Podcast Aug 23, 2024Root Causes 414: What Are the Revocation Periods for Public Certs?
We detail mandatory revocation periods for leaf certificates and intermediates and explain when a 24-hour versus a 120-hour revocation deadline applies.