Relevant Items

Why Entrust SSL?

TRUSTED Security Brand


Customer trust increases when stores have SSL certificates.


Entrust is more than a security company. We’re your partner — real people you can depend on to provide the security, focus and trust you deserve.


Entrust is one of the most trusted brands in online security with one of the most respected client bases, empowering governments, enterprises and financial institutions in more than 5,000 organizations spanning 150 countries. Entrust offers a wide range of certificates and services to help organizations protect their environments from outside threats. We take a best practices approach to providing our customers with the tools and resources they need to properly install SSL and configure their servers. Entrust’s award-winning software authentication platforms manage today’s most secure identity credentials, among which, is certificate management and SSL.


And while we do provide a full range of security solutions for all type of organizations, Entrust Cloud personnel have one with one purpose in mind – your protection. That’s why Entrust offers such a wide array of SSL Certificates, and has a 98.5 percent renewal rate for SSL customers. So we can help you build a layered, identity-based security approach that protects your customers and returns on your investment in multiple ways.



Why ENTRUST DATACARD?


Consumers, citizens and employees increasingly expect anywhere-anytime experiences — whether they are making purchases, crossing borders, accessing e-gov services or logging onto corporate networks. They also expect the ecosystems that allow this freedom and flexibility to be entirely reliable and secure. Now, as part of Datacard Group, Entrust offers an expanded portfolio of solutions to make these ecosystems possible. Entrust offers software authentication platforms that strengthen security in a wide range of identity and transaction networks. Together, Entrust Datacard issues more than 10 million secure identities every day and manage billions of secure transactions annually.



Wide range of PRODUCTS AND SERVICES


Secure Sockets Layer (SSL) digital certificates are electronic files that are used to identify people and resources over networks such as the Internet. Digital certificates also enable secure, confidential communication between two parties using encryption.


Certificates are issued by a Certification Authority (CA). Much like the role of a passport office, the CA validates the certificate holder’s identity and “signs” the certificate so that it cannot be tampered with or altered.


Entrust offers a wide range of SSL and digital certificates to meet every security need.



Entrust SERVICE EXCELLENCE


WebTrust Seal


Entrust was the first certification authority (CA) in the world to earn the WebTrust for Certification Authorities (CAs) Seal of Assurance from the American Institute of Certified Public Accountants (AICPA) and the Canadian Institute of Chartered Accountants (CICA). A WebTrust Seal provides you the assurance and confidence in the security of a public key infrastructure (PKI).



Better Browser Trust


Entrust SSL digital certificates are trusted by more than 99 percent of all Web browsers in use today. From Microsoft Internet Explorer (IE), Mozilla Firefox, Google Chrome and the top mobile platforms, you can be sure Entrust SSL certificates are secure, trusted and interoperable.



Get your SSL certificates from the best


An SSL site seal is much more than a fancy badge that websites display on their home page. The seals are actually used to verify the legitimacy of a site’s SSL certificate in real-time. You can check an SSL certificates authenticity, expiration date, certification authority and more.



The Art of SSL Best Practices


Whether you’re new to SSL or possess years of experience with the technology, it never hurts to familiarize yourself with the security standard of the Internet. Entrust offers the best certificate management, website performance, and support tools on the market. We’ve compiled a collection of resources with useful information that will help you understand the technology — and even help you make important purchasing decisions.



Easy to do BUSINESS WITH


Entrust is one of the easiest Certificate Authorities to do business with. Our customers love our dedicated sales representatives, flexible policies and integrated suite of products.

Entrust SSL is SECURITY


Secure Sockets Layer (SSL) digital certificates are electronic files that are used to identify people and resources over networks such as the Internet. Digital certificates also enable secure, confidential communication between two parties using encryption.


Certificates are issued by a Certification Authority (CA). Much like the role of a passport office, the CA validates the certificate holder’s identity and “signs” the certificate so that it cannot be tampered with or altered.



Cutting Edge ENCRYPTION


Your website’s security is our number one priority. That’s why Entrust certificates feature cutting-edge 256-bit encryption – the most secure encryption available – to secure your data. Entrust certificates support SHA-2 algorithms with ECC used in our root certificates, delivering the strongest security and increased performance.



Protect and authenticate identities in the cloud


The protection and authentication of digital identities is one of the key components in securing online transactions or communications. Entrust is diligent in ensuring we meet or exceed industry requirements for the issuance and management of publicly-trusted certificates and SSL Security. This added level of authentication makes it more difficult for your identity to be misused and your account compromised.



Safe Use of WILDCARD CERTIFICATES


Properly managed Wildcard Secure Socket Layer Certificates can provide increased flexibility for system administrators, but they come with increased risk. Entrust recommends using proper safeguards when deploying Wildcard certificates.



Safe Use of MULTI-SERVER DIGITAL CERTIFICATES


Properly managed, multi-server certificates can provide increased flexibility. However, they also decrease SSL Security and increase the probability of eavesdrop and impersonation attacks. Entrust recommends using proper safeguards when deploying multi-server certificates.



Entrust Legal Repository


This page contains information relating to the use and issuance of certificates by Entrust

The vast majority of current browsers will connect seamlessly to sites secured with an Entrust SSL Certificate. Below is a list of servers and browsers which have been confirmed to work with SSL certificates from Entrust.


Extended Validation (EV) Browsers


  • Apple iPhone 3.0
  • Apple Safari 3.2
  • Google Chrome
  • Microsoft Edge
  • Microsoft Internet Explorer 7+
  • Mozilla 3+
  • Opera 9.5+

Web Browsers


  • AOL 5+
  • Apple Safari 1+
  • Camino 1.0+
  • Firefox 1.0+
  • Flock 1.0+
  • Google Chrome
  • Konqueror 2.2.1+
  • Maxthon 2+
  • Microsoft Edge
  • Microsoft Internet Explorer 5+
  • Mozilla 1.7+
  • MSN Explorer
  • Netscape 4.51+
  • Opera 5+

Mobile Devices


  • Access NetFront
  • Android 2.0+
  • Apple iOS 2.0+ (iPhone, iPad, iPod Touch)
  • Brew
  • Kyocera
  • NTT Docomo
  • Nokia phones
  • Openwave mobile browser
  • Opera mini
  • Palm OS
  • Palm Treo
  • RIM BlackBerry OS
  • RIM BlackBerry Tablet OS (PlayBook)
  • SoftBank Mobile
  • Sony-Ericsson phones
  • Symbian OS based handsets (Levono, Nokia, Orange, Panasonic, Samsung, Siemens, Sony-Ericsson)
  • TorchMobile Iris Browser
  • webOS
  • Windows CE
  • Windows Mobile 2003+, 5+
  • Windows Phone 7+

Supported Servers


  • Apache (OpenSSL)
  • Apache Tomcat
  • Barracuda
  • BEA Weblogic
  • C2Net Stronghold
  • Check Point
  • Cisco ACE
  • Cisco ACS
  • Cisco ASA
  • Citrix Access Gateway
  • Citrix Netscaler
  • Citrix Secure Gateway
  • cPanel
  • F5 BIG IP
  • F5 Firepass VPN
  • IBM HTTP Server
  • IBM Websphere
  • iPlanet Server
  • Java Web Server (keytool)
  • Juniper Secure Access VPN
  • Linux Redhat
  • Lotus Domino
  • Mac OS X
  • Microsoft Exchange 2007
  • Microsoft Exchange 2010
  • Microsoft Forefront TMG
  • Microsoft IIS 5/6
  • Microsoft IIS 7
  • Microsoft ISA
  • Microsoft Lync 2010
  • Microsoft Office Comminications Server
  • Oracle Wallet Manager
  • Plesk
  • SAP
  • Sun Java Web Server
  • Zeus

Application Suites


  • SeaMonkey 1.0+

Java Clients


  • IBM SDK
  • Oracle Jinitiator
  • Sun Java (JRE J2SE J2EE JDK) 1.4.2+
  • Sun Java (J2ME) 2.1+

Notes:

If your client is not listed above but is supported by Entrust or if you cannot find the client you’re looking for, please contact us.

Trusted Security FOCUSED ON YOU


Vulnerabilities Heartbleed, POODLE, and FREAK have let the world at large know that our communications structures need better protection. There’s never been as much scrutiny of the Secure Socket Layer (SSL) and Transport Security Layer (TLS) protocols as there is today. And while scrutiny is good, it may be warranted elsewhere. Most attention is typically placed on the protocol’s vulnerabilities. But the fact that most organizations don’t realize that is, that it’s their own actions and improper deployment that are proving to be bigger challenges to the state of their security than inherent vulnerabilities in the protocols.


In many companies it seems that certificates are accounted for using some hard-to-maintain manual process, and that security breaches on secure servers are only flagged when there is wide public discovery. Security upgrades don’t seem to occur otherwise. And, we can’t say that system administrators are to blame. SSL/TLS is a deceptively simple technology. It’s not actually as easy to deploy correctly as it seems.


That’s why our SSL experts have put together Entrust’s SSL Best Practices resources, so we can help guide you to safer SSL/TLS deployment and keep you aware of all industry security news and upgrades that are available to you.



How does SSL WORK


You’ve heard of SSL, but do you know how it actually works? If not, we’ve gathered a comprehensive primer on the history of the technology and how it’s used to secure and encrypt online transactions and communication.



Better Browser Trust


SSL/TLS is a powerful technology, but the key to ensuring your site is properly protected is correct deployment. Entrust’s SSL Best Practices guide dives deep into the complexities of SSL and teaches you the common mistakes and best practices that address today’s popular security problems/ concerns.



SSL SERVICE and SUPPORT


If you’re not yet well-versed in SSL or if our documents didn’t cover your specific problem, Entrust has technical support services that can help answer your questions and find what you’re looking for.



Extended Validation is the NEW WEB STANDARD


Green is good. And EV means green. Today’s web browsers display the corporate name with a green address bar for sites protected by an EV SSL certificate. That’s what makes EV SSL certificates a consumer favorite, they offer reassurance through the green bar and other visual cues in the un-modifiable parts of the browser that the site they are visiting is legitimate.



The Importance of ORGANIZATIONAL VALIDATION


SSL certificate providers employ different methods for verifying the identities of the organization or individual purchasing SSL certificates. Entrust thinks it’s important to understand the difference between verification types.



Protect and authenticate identities IN THE CLOUD


The protection and authentication of digital identities is one of the key components in securing online transactions or communications. Entrust is diligent in ensuring we meet or exceed industry requirements for the issuance and management of publicly-trusted certificates. This added level of authentication makes it more difficult for your identity to be misused and your account compromised.



Elliptic Curve Cryptography (EEC)


Entrust provides innovative organizations the opportunity to deploy digital certificates using advanced ECC technology. Test your applications and services for compatibility with the advanced ECC standard.



Migrating to SHA-2


Google is being proactive in strengthening the trust chains of the online community. In September 2014, the company announced that they will sunset SHA-1. This change, however, introduces necessary growing pains for global website operators. As with most aging cryptography, time is the enemy. Advances in computing power overcome cryptographic strength. In this case, SHA-1 has been determined to be weak against collision attacks.