Bruce Morton

Have worked in the public key infrastructure and digital certificate since 1997 and have focused on SSL and public trust certificates since 2005. Am an active member of the CA/Browser Forum and the CA Security Council. Always looking for new items to blog to certificate users. http://www.entrust.com/author/bruce-morton/. Also have interests in locally brewed beverages, a cure for TTP and God's country up the Ottawa Valley.

Bruce Morton
flipped into SSL, TLS and HTTPS
IETF formally deprecates TLS 1.0 and 1.1
Google
IETF formally deprecates TLS 1.0 and 1.1
feistyduck.com
Mar 31
Bruce Morton
flipped into SSL, TLS and HTTPS
A safer default for navigation: HTTPS
Security
A safer default for navigation: HTTPS
chromium.org - Chromium Blog
Mar 23
Bruce Morton
flipped into SSL, TLS and HTTPS
The next decade of Public Key Infrastructure…
Security
The next decade of Public Key Infrastructure…
unmitigatedrisk.com - rmhrisk
Mar 30
Bruce Morton
flipped into SSL, TLS and HTTPS
Certificate Transparency: SCT Auditing
Google Chrome
Certificate Transparency: SCT Auditing
hardenize.com
Mar 30
Bruce Morton
flipped into SSL, TLS and HTTPS
Cloudflare
Protecting Cloudflare Customers from BGP Insecurity with Route Leak Detection
cloudflare.com - David Tuber
Border Gateway Protocol (BGP) route leaks and hijacks can ruin your day — BGP is insecure by design, and incorrect routing information spreading …
Mar 25
Bruce Morton
flipped into SSL, TLS and HTTPS
Keyless SSL now supports FIPS 140-2 L3 hardware security module (HSM) offerings from all major cloud providers
Cloudflare
Keyless SSL now supports FIPS 140-2 L3 hardware security module (HSM) offerings from all major cloud providers
cloudflare.com - Patrick R. Donahue
Mar 27
Bruce Morton
flipped into SSL, TLS and HTTPS
Introducing: Advanced Certificate Manager
Cloudflare
Introducing: Advanced Certificate Manager
cloudflare.com - Dina Kozlov
Mar 27
Bruce Morton
flipped into SSL, TLS and HTTPS
Heartbleed Revisited
Cloudflare
Heartbleed Revisited
cloudflare.com - Nick Sullivan
Mar 27
Bruce Morton
flipped into SSL, TLS and HTTPS
Serious Security: OpenSSL fixes two high-severity crypto bugs
Security
Serious Security: OpenSSL fixes two high-severity crypto bugs
sophos.com - Paul Ducklin
Mar 28
Bruce Morton
flipped into SSL, TLS and HTTPS
Firefox 87 trims HTTP Referrers by default to protect user privacy
Firefox
Firefox 87 trims HTTP Referrers by default to protect user privacy
mozilla.org - Dimi Lee
Mar 22
Bruce Morton
flipped into SSL, TLS and HTTPS
Security
Google, HTTPS, and device compatibility
googleblog.com - Kaylin Trychon
Posted by Ryan Hurst, Product Management, Google Trust Services Encryption is a fundamental building block when you’re on a mission to organize the …
Mar 15
Bruce Morton
flipped into SSL, TLS and HTTPS
Reminder: Amazon S3 and Amazon CloudFront service certificates migrating to Amazon Trust Services starting March 23, 2021...
Sean White
This is a reminder that Amazon S3 and Amazon CloudFront are migrating their default TLS certificates from DigiCert to Amazon Trust Services, …
Mar 4
Bruce Morton
flipped into SSL, TLS and HTTPS
SSL
SSL Review: February 2021 - Entrust Blog
entrust.com - Bruce Morton
Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Certificate Transparency Google …
Mar 18
Bruce Morton
flipped into SSL, TLS and HTTPS
An analysis of a large-scale HTTPS interception
An analysis of a large-scale HTTPS interception
apnic.net - Ram Sundara Raman
Feb 15
Bruce Morton
flipped into SSL, TLS and HTTPS
Rust and cryptographic code
Rust and cryptographic code
feistyduck.com
Feb 25
Bruce Morton
flipped into SSL, TLS and HTTPS
SSL Review: January 2021 - Entrust Blog
entrust.com - Bruce Morton
Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Entrust Looking Back at 2020 Code …
Feb 18
Bruce Morton
flipped into SSL, TLS and HTTPS
Preparing to Issue 200 Million Certificates in 24 Hours
letsencrypt.org
On a normal day Let’s Encrypt issues nearly two million certificates. When we think about what essential infrastructure for the Internet needs to be …
Feb 10
Bruce Morton
flipped into SSL, TLS and HTTPS
QuoVadis: HTTPS error due to a revoked certificate
QuoVadis: HTTPS-Fehler wegen gesperrtem Zertifikat
heise.de - Jürgen Schmidt
Jan 15
Bruce Morton
flipped into SSL, TLS and HTTPS
IT Security Guidelines for Transport Layer Security (TLS)
Security
IT Security Guidelines for Transport Layer Security (TLS)
ncsc.nl
Jan 21
Bruce Morton
flipped into SSL, TLS and HTTPS
Google Chrome snubs Camerfirma for loose certificate management • Registration - Eminetra New Zealand
eminetra.co.nz
Feb 2
Bruce Morton
flipped into SSL, TLS and HTTPS
Ivan Ristić: OpenSSL Cookbook 3rd Edition now available
ivanristic.com
Another year, another book to update. The third edition of OpenSSL Cookbook, my free book that covers command-line usage of OpenSSL, is now available …
Feb 1
Bruce Morton
flipped into SSL, TLS and HTTPS
Certificates issued by AC Camerfirma SA will no longer be accepted in Chrome, beginning with Chrome 90.
Summary of Camerfirma's Compliance Issues
google.com
Jan 25
Bruce Morton
flipped into SSL, TLS and HTTPS
NSA urges system administrators to replace obsolete TLS protocols | ZDNet
ZDNet - Catalin Cimpanu
NSA: Obsolete encryption provides a false sense of security. The US National Security Agency has issued a security advisory [PDF] this month urging …
Jan 20
Bruce Morton
flipped into SSL, TLS and HTTPS
The Next Gen Database Servers Powering Let's Encrypt
letsencrypt.org
Let’s Encrypt helps to protect a huge portion of the Web by providing TLS certificates to more than 235 million websites. A database is at the heart …
Jan 21
Bruce Morton
flipped into SSL, TLS and HTTPS
SSL Review: December 2020 - Entrust Blog
entrust.com - Bruce Morton
Entrust’s monthly SSL review covers SSL/TLS discussions — recaps news, trends and opinions from the industry. Kazakhstan MITM Certificate Mozilla …
Jan 19
Bruce Morton
flipped into SSL, TLS and HTTPS
Looking Back at 2020 - Entrust Blog
entrust.com - Bruce Morton
Looking Back at 2020 2020 felt more like a maintenance year in the SSL/TLS ecosystem. Other than the certificate validity period changing from …
Jan 15
Bruce Morton
flipped into SSL, TLS and HTTPS
KEMTLS: Post-quantum TLS without signatures
Authentication
KEMTLS: Post-quantum TLS without signatures
cloudflare.com - Sofía Celi
Jan 15
Bruce Morton
flipped into SSL, TLS and HTTPS
Dance like nobody is watching. Encrypt like everybody is.
Security
Naked Security Live – HTTPS: do we REALLY need it?
sophos.com - Tom
Jan 12
Bruce Morton
flipped into SSL, TLS and HTTPS
Firefox
Encrypted Client Hello: the future of ESNI in Firefox
mozilla.org - Kevin Jacobs
BackgroundTwo years ago, we announced experimental support for the privacy-protecting Encrypted Server Name Indication (ESNI) extension in Firefox …
Jan 7
Bruce Morton
flipped into SSL, TLS and HTTPS
So, if you still haven’t upgraded your website to support HTTPS, we suggest that you make it your own New Year’s Resolution for 2021!
Chrome browser has a New Year’s resolution: HTTPS by default
sophos.com - Paul Ducklin
Jan 6