What is Certificate Transparency

Why logging SSL certificates makes the internet safer

Certificate Transparency is a mechanism used to publicly log SSL certificates, this helps website owners and watchdogs detect mis-issuance.

Of all the threats facing the SSL industry, mis-issuance is among the most dangerous. A mis-issuance happens when a Certificate Authority issues an SSL certificate improperly. This could on account of incorrect information in the CSR, the certificate being issued to the wrong person or it could even mean the entire CA is compromised.

Starting March 1, 2018, every SSL certificate that is issued will be logged. This will be done at the CA level and will have absolutely no impact on the website or its users. Typically if a CA fails to log a certificate, Google’s web-crawlers will log it within a few days. But you may still want to double-check before installing the certificate.

The CT logs are fully searchable, you should be able to find your own SSL certificate in it. Overall this is good for the entire SSL ecosystem because, as the name suggests, it provides a great degree of transparency into what the CAs are doing with regard to validation and issuance.

If you would like to learn more about Certificate Transparency, here is an in-depth look.

  • 0 Users Found This Useful
     Was this answer helpful?

Related Articles

 Explaining the Chain of Trust

A brief overview of PKI (Private Key Infrastructure) and why your certificate is trusted. One of the most common questions we field is in relation to the “Chain of Trust.” If you’ve ever had any questions about roots, intermediates or how SSL...

 How to Check a Certificate’s Expiration Date (Chrome)

Get certificate information on any website in just a few clicks. Checking your SSL certificate’s expiration date on Google Chrome is fairly easy. Depending on which version of Chrome you’re running, it can be done within just a few clicks. Here’s...

 Multi-Domain Wildcard Certificates

If you are looking to secure multiple wildcard domains, but want to keep them all under one certificate, look no further than the Multi-Domain Wildcard SSL certificates. Offered by all major Certificate Authorities, these SSL Certificates are a...

 Understanding Different Certificate Types

If you’re new to the world of SSL certificates, trying to find the certificate that best suits your needs can seem like an impossible task. Use this guide to find the perfect certificate to match your needs. Single Domain Certificates Single...

 How to Create a .pem File for SSL Certificate Installations

.pem SSL Creation Guide SSL .pem files (concatenated certificate container files), are frequently required for certificate installations when multiple certificates are being imported as one file. This article contains multiple sets of...

Powered by WHMCompleteSolution