Categories
Blogs Certs Trust, Identity and Access Blogs

FAQ’s – Relating to the Jisc Certificate Service announcement on 09/12/2024 

This blog is relating to the communication sent on Monday 9th December and was last updated on 23/12/2024 at 11:55am. In this FAQ, we’ll address your questions about what is happening, what it means for you, and how we plan to assist you through the transition. From understanding what happens to your subscriptions and services […]

Categories
Blogs Certs Trust, Identity and Access Blogs

Navigating SSL Options: OV/EV vs. Let’s Encrypt DV – A Clear Guide

When to Choose a Free SSL/TLS Certificate (Like Let’s Encrypt) vs. a Paid Certificate Authority: What You Need to Know   Contents: Free vs. Paid-for SSL/TLS Certificates Caveats when using Let’s Encrypt Other certificate use cases In today’s digital world, securing websites with SSL/TLS certificates is essential. Browsers and search engines penalise unsecured sites, and […]

Categories
Trust, Identity and Access Blogs

Your Update on the 90-Day change

You may have heard that Google has announced their intention to implement a new standard, reducing certificate lifecycles from 398 days to 90 days.  You also may have heard that this change was being implemented in 2024.   The exact timeline for this change remains uncertain. However, Certificate Authorities like Sectigo, GlobalSign, and Digicert strongly advise […]

Categories
Federated Services T&I Consultancy UK Access Management Federation

The Shibboleth IdP v5 Upgrade is Here

Striving to be a better version of yourself?   The Shibboleth Identity Provider (IdP) has certainly achieved this, now at version 5, surpassing its predecessor, version 4, which will see the end of support from the Shibboleth project in September 2024. Which version are you currently using?   Maintaining an up-to-date Shibboleth IdP is a crucial component […]

Categories
Federated Services Trust, Identity and Access Blogs UK Access Management Federation Uncategorized

FedCM Update January 2024

Introduction Since the Research and Education (R&E) hackathon in February last year, the Federated Credential Management API (FedCM) API has moved to the point where its basic functionality has been included in Google Chrome and most Chromium-based web browsers such as Microsoft Edge. It’s become clearer that the main consumer of FedCM is Google themselves, specifically […]

Categories
Trust, Identity and Access Blogs

Your FAQ guide to the 90-day change

Get ready for the 90-day change FAQ roundup! You might have heard that Google have signalled their intent to drive through the reduction from 398-day to 90-day certificate lifecycles, as the new standard.  The timeline for this change is not yet clear. However, Certificate Authorities such as Sectigo, GlobalSign and Digicert have been advising people […]

Categories
Trust, Identity and Access Blogs

Navigating change: An update on 90-day Certificates

If you missed the news, Google have signalled their intent to drive through the reduction from 398-day to 90-day certificate lifecycles, as the new standard. This update was provided as part of their ‘Moving Forward, Together’ plan, in March 2023.    The anticipation of diminishing certificate lifespans has been a long-standing prediction. And indeed, it seems […]

Categories
Trust, Identity and Access Blogs

Securing the Digital Realm: Navigating the New Age with Updated Code Signing Certificates

Today, we’re excited to share some important updates regarding our code signing certificate process on the Sectigo portal. Due to the latest regulations introduced by the CAB Forum, Sectigo have enhanced their procedures to ensure the utmost protection for your code signing certificates. These changes are designed to minimise the risk of misuse and safeguard […]

Categories
Trust, Identity and Access Blogs

Self-Sovereign Identity in the Research and Education Community

Digital Wallets, Verifiable Credentials, and Decentralized Identifiers were a common theme of the European Identity Conference in 2023. All of which help underpin ideas of digital sovereignty. Digital sovereignty can apply to either you as an individual, the organization you belong to, or to the geopolitical region you are a citizen of. The sovereignty of […]

Categories
Trust, Identity and Access Blogs

ACME

Are you looking for automation when it comes to managing your SSL Certificates? Then you have had most likely heard of the ACME protocol. But what is it and how does it work? In this blog post, we will give you all the information you need on the ACME protocol and why it is important […]