DigiCert

From Wikipedia, the free encyclopedia
DigiCert Inc.
TypePrivate company
IndustryInternet security, Public key infrastructure, IoT security
Founded2003; 20 years ago (2003)
Headquarters
Number of locations
12
Area served
Worldwide
Key people
Amit Sinha (CEO) Jason Sabin (CTO)
Number of employees
1,000+
SubsidiariesCyberTrust
GeoTrust
QuoVadis
RapidSSL
Thawte
Mocana
DNS Made Easy
Websitewww.digicert.com

DigiCert, Inc. is an American digital security company headquartered in Lehi, Utah, with over a dozen global offices in various countries including: Australia, Belgium, Bermuda, Ireland, Japan, India, Germany, France, Netherlands, South Africa, Switzerland and United Kingdom.[1] As a certificate authority (CA) and trusted third party, DigiCert provides the public key infrastructure (PKI) and validation required for issuing digital certificates or TLS/SSL certificates. These certificates are used to verify and authenticate the identities of organizations and domains and to protect the privacy and data integrity of users’ digital interactions with web browsers, email clients, documents, software programs, apps, networks and connected IoT devices.

According to independent survey company Netcraft, "DigiCert is the world's largest high-assurance certificate authority, commanding 60% of the Extended Validation Certificate market, and 96% of organization-validated certificates globally."[2] DigiCert has 100+ Patents and Patents Pending.[3]

History[edit]

Example of a DigiCert issued certificate for *.wikipedia.org

DigiCert was founded by Ken Bretschneider in 2003.[4][5] Bretschneider served as CEO and chairman of the board until 2012 when he was appointed Executive chairman and Nicholas Hales became CEO.[6] In 2016, the company named John Merrill CEO.[7]

In 2005, DigiCert became a founding member of the CA/Browser Forum and remains active in the forum today.[8]

In 2007, DigiCert partnered with Microsoft to develop the industry's first multi-domain (SAN) certificate.[9][10]

In 2015, DigiCert acquired the CyberTrust Enterprise SSL business from Verizon Enterprise Solutions, becoming the world's second-largest certificate authority for high-assurance or extended validation (EV) TLS/SSL certificates.[11]

On August 28, 2015, in one of the largest investments in a Utah-based company to date, private equity firm Thoma Bravo acquired a majority stake in DigiCert, with TA Associates a leading global growth private equity firm, holding a minority share. Thoma Bravo was quoted as saying, "DigiCert represents an outstanding investment opportunity to back a market leader… known for its consistent innovation and first-rate customer service."[12]

In 2017, DigiCert acquired the TLS/SSL and PKI businesses from the world's largest certificate authority, Symantec (including brands GeoTrust, RapidSSL (part of GeoTrust), Thawte and Verisign), for $950 million.[13] The acquisition resulted from questions first raised in 2015 by web browsers Google and Mozilla about the authenticity of certificates issued by Symantec, which represented one-third of all TLS/SSL certificates on the web.[14][15] In September 2017, Google and Mozilla announced they would "... reduce, and ultimately remove, trust in Symantec's Root Keys in order to uphold users’ security and privacy when browsing the web." The final distrust deadline for certificates chaining to Symantec roots was set for October 2018.[16] Symantec agreed to transfer its certificate business to its top TLS/SSL competitor, DigiCert, whose roots were trusted by browsers.[17] In December 2017, DigiCert began issuing free replacements for all distrusted certificates from Symantec, GeoTrust, RapidSSL, Thawte and VeriSign. By Oct. 2018, the company had revalidated more than 550,000 organizational identities and issued more than 5 million replacement certificates for affected customers.[18]

In 2018, DigiCert acquired QuoVadis, a trust service provider (TSP) headquartered in Switzerland offering qualified digital certificates, PKI services and PrimoSign electronic signature software.[19] Qualified digital certificates from QuoVadis (now backed by DigiCert) comply with eIDAS, a set of EU standards for electronic transactions requiring legal proof of authentication. The EU Payment Services Directive mandated that banks and other financial institutions operating in Europe begin using qualified digital certificates by Jun. 2019. According to DigiCert, "... the QuoVadis acquisition aligns with the company's vision of providing globally dispersed and robust PKI-based solutions with local support."[20]

In 2019, the company announced a new R&D division called DigiCert Labs, "... an initiative dedicated to researching and developing innovative approaches to security challenges."[21] DigiCert Labs will collaborate with other enterprise labs – including Microsoft Research, Utimaco, ISARA and Gemalto – and make grants to universities for the study of topics related to authentication, data integrity, encryption and identity. Initial research projects will focus on post-quantum cryptography and machine learning.[22] In 2019, DigiCert also launched the first post-quantum computing tool kit.[23]

In 2019, Clearlake Capital Group, L.P., a leading private investment firm, and TA Associates, an existing investor, reached an agreement to make a strategic growth investment in DigiCert. As part of the transaction, Clearlake and TA Associates become equal partners in the company.[24][25]

In 2020, according to independent survey company Netcraft, "DigiCert is the world's largest high-assurance certificate authority, commanding 60% of the Extended Validation Certificate market, and 96% of organization-validated certificates globally."[2]

DigiCert is a member of the CA/Browser Forum, an industry consortium that creates guidelines and standards for participating certificate authorities and web browsers.[26] Dean Coclin, Sr. Director of Business Development at DigiCert, served as Vice-Chairperson of the CA/Browser Forum from Nov. 1, 2018 until Oct. 31, 2020.[27]

DigiCert Inc. is of no relation to Digicert Sdn. Bhd, a Malaysian-based certification authority that issues certificates with weak keys and had its trust revoked by web browsers.[28][29][30]

In January 2022, DigiCert acquired IoT security company Mocana.[31] In June 2022, the company acquired DNS Made Easy, a DNS services provider.[32]

On October 19, 2022 DigitCert named Dr. Amit Sinha CEO and Board Member.[33] Amit had previously lead technology and innovation at cybersecurity leader Zscaler the previous 12 years.

Awards[edit]

  • 2022 - Best Companies to Work For in Utah[34]
  • 2022 - American Business Awards® Identity & Access Security Solution: DigiCert ONE[35]
  • 2022 - CRN The 10 Coolest IoT Security Companies: The Internet Of Things 50[36]
  • 2021 - CRN The 20 Coolest Web, Application and Email Security Companies: The Security 100[37] [38]
  • 2021 - IoT Breakthrough Award, IoT Security Product of the Year[39] [40]
  • 2020 - IoT Product of the Year Award Recipient: DigiCert ONE[41]
  • 2020 - CRN The 20 Coolest Web, Email and Application Security Companies: The Security 100[42]
  • 2020 - Frost & Sullivan 2020 Global Company of the Year Award in TLS Certificate Market[43] [44]
  • 2019 - CRN Security 100: 20 Coolest Email, Web and Application Security Vendors[45]
  • 2018 - American Business Awards® New Product or Service of the Year - Software - Application Programming Interface (API) Management Solution[46]
  • 2018 - American Business Awards® New Product or Service of the Year - Software - Healthcare Technology Solution[46]
  • 2017 - Frost & Sullivan 2017 North American Visionary Innovation Leadership Award for Internet of Things Security[47]

Criticism[edit]

In 2019, Google security researcher Scott Helme revoked approximately a million dollars worth of extended verification certificates, a significant portion of which were DigiCert certificates.[48]

QWAC and EV[edit]

DigiCert was condemned[by whom?] for pushing[citation needed] QWAC scheme of certificate similar to EV certificates that undermined trust in certificates.[49][50][51][52]

References[edit]

  1. ^ "DigiCert Fact Sheet" (PDF). digicert.com. 2021.
  2. ^ a b "DigiCert - World's Largest High-Assurance Certificate Authority | Netcraft". trends.netcraft.com.
  3. ^ "Digicert incPatents | PatentGuru". www.patentguru.com. Retrieved 2023-01-27.
  4. ^ "History of Innovation | DigiCert". www.digicert.com. Retrieved 2023-01-27.
  5. ^ Anstey, Tom (2018). "Interview - Ken Bretschneider and Josh Shipley" (PDF). Attractions Management. 2018 (4): 35.
  6. ^ “Utah’s DigiCert reorganizes its management”. The Salt Lake Tribune. Retrieved 2019-02-28.
  7. ^ “DigiCert names CEO”. Daily Herald. Retrieved 2019-02-28.
  8. ^ "Members". CAB Forum. Retrieved 2023-01-27.
  9. ^ "DigiCert Fact Sheet" (PDF). digicert.com.
  10. ^ "History of Innovation | DigiCert". www.digicert.com. Retrieved 2023-01-27.
  11. ^ “DigiCert Acquires Verizon Enterprise SSL Business”. DigiCert.com. Retrieved 2019-03-01.
  12. ^ Sean Michael Kerner (2015-08-28). "Thoma Bravo Invests in Security Firm DigiCert". Eweek.com. Retrieved 2015-12-25.
  13. ^ Raymond, Art (3 August 2017). "Lehi's DigiCert swallows web security competitor in $1 billion deal". Deseret News. Retrieved 21 May 2020.
  14. ^ Sharwood, Simon. “Symantec offloads its certs and web security biz to DigiCert”. The Register. Retrieved 2019-03-05.
  15. ^ Constantin, Lucian. “To punish Symantec, Google may distrust a third of the web’s SSL certificates”. Computerworld. Retrieved 2019-03-05.
  16. ^ “Chrome’s Plan to Distrust Symantec Certificates”. Google. Retrieved 2019-03-05.
  17. ^ "DigiCert Closes Acquisition of Symantec's Website SSL Security Unit". eWeek. Retrieved 2019-03-11.
  18. ^ "DigiCert works with its customers and partners to successfully move past Google's distrust of Symantec TLS certificates". PR Newswire. Retrieved 2019-03-01.
  19. ^ Kent, Jonathan (2018-10-31). "QuoVadis to be sold to US firm DigiCert". www.royalgazette.com. Retrieved 2022-08-24.
  20. ^ Barker, Sara. “DigiCert’s QuoVadis acquisition extends PKI expertise in Europe”. SecurityBrief EMEA. Retrieved 2019-03-05.
  21. ^ “DigiCert Labs to innovate new security technologies that address emerging threats through collaboration with academic and industry research”. PR Newswire. Retrieved 2019-02-28.
  22. ^ Barker, Sara. “DigiCert Labs to research postquantum cryptography and ML”. SecurityBrief EMEA. Retrieved 2019-02-28.
  23. ^ "DigiCert Announces Post-Quantum Computing Tool Kit | DigiCert.com". www.digicert.com. Retrieved 2023-01-27.
  24. ^ "News | TA". TA Associates. Retrieved 2019-07-16.
  25. ^ "CLEARLAKE CAPITAL GROUP AND TA ASSOCIATES TO MAKE A STRATEGIC GROWTH INVESTMENT IN DIGICERT". Clearlake Capital. 2019-07-09. Retrieved 2019-07-16.
  26. ^ CA/Browser Forum Members. CA/Browser Forum. Retrieved 2019-02-28
  27. ^ CA/Browser Forum Leadership. CA/Browser Forum. Retrieved 2019-02-28.
  28. ^ "SSL Certificate Support - Entrust, Inc". Entrust.net. Retrieved 2015-12-25.
  29. ^ Revoking Trust in DigiCert Sdn. Bhd Intermediate Certificate Authority, Mozilla. "DigiCert Sdn. Bhd is a Malaysian subordinate CA under Entrust and Verizon (GTE CyberTrust). It bears no affiliation whatsoever with the US-based corporation DigiCert, Inc., which is a member of Mozilla's root program."
  30. ^ Microsoft Security Advisory (2641690) "DigiCert Sdn. Bhd is not affiliated with the corporation DigiCert, Inc., which is a member of the Microsoft Root Certificate Program."
  31. ^ Sawers, Paul. "DigiCert acquires Mocana to bolster IoT security". VentureBeat. Retrieved 27 January 2022.
  32. ^ Graham, Patrick (2022-06-09). "DigiCert Acquires DNS Made Easy". www.themiddlemarket.com. Retrieved 2022-08-24.
  33. ^ "DigiCert Appoints Industry Veteran Amit Sinha as Chief Executive Officer". www.prnewswire.com. 2022-10-19. Retrieved 2022-10-24.
  34. ^ Malan, Mekenna (December 7, 2022). "Meet the 2022 Best Companies to Work For in Utah". utahbusiness.com.{{cite web}}: CS1 maint: url-status (link)
  35. ^ "Identity & Access Security Solution". https://stevieawards.com/. June 2022. {{cite web}}: External link in |website= (help)CS1 maint: url-status (link)
  36. ^ Novinison, Michael (April 5, 2022). "The 10 Coolest IoT Security Companies: The 2022 Internet Of Things 50". crn.com.{{cite web}}: CS1 maint: url-status (link)
  37. ^ Michael, Novinson (February 23, 2021). "The 20 Coolest Web, Application And Email Security Companies Of 2021: The Security 100". crn.com.{{cite web}}: CS1 maint: url-status (link)
  38. ^ "DIGICERT NAMED TO CRN SECURITY 100 LIST FOR WEB, APPLICATION AND EMAIL SECURITY". digicert.com. March 4, 2021.{{cite web}}: CS1 maint: url-status (link)
  39. ^ "2021 IoT Breakthrough Winners". iotbreakthrough.com. January 13, 2021.{{cite web}}: CS1 maint: url-status (link)
  40. ^ "DIGICERT ONE RECEIVES IOT BREAKTHROUGH SECURITY PRODUCT OF THE YEAR AWARD". digicert.com. January 13, 2021.
  41. ^ "Winners of the 2020 IoT Evolution Product of the Year Awards Announced". https://www.iotevolutionworld.com/. July 16, 2020. {{cite web}}: External link in |website= (help)CS1 maint: url-status (link)
  42. ^ Novinson, Michael (February 25, 2020). "The 20 Coolest Web, Email And Application Security Companies Of 2020: The Security 100". crn.com.{{cite web}}: CS1 maint: url-status (link)
  43. ^ "DigiCert Named 2020 Global Company of the Year in TLS Certificate Market by Frost & Sullivan". frost.com. May 21, 2020.{{cite web}}: CS1 maint: url-status (link)
  44. ^ "DIGICERT NAMED 2020 GLOBAL COMPANY OF THE YEAR IN TLS CERTIFICATE MARKET BY FROST & SULLIVAN". digicert.com. May 21, 2020.{{cite web}}: CS1 maint: url-status (link)
  45. ^ Novinson, Michael (February 25, 2019). "2019 Security 100: 20 Coolest Email, Web And Application Security Vendors". crn.com.
  46. ^ a b "New Product Awards". https://stevieawards.com/. June 11, 2018. {{cite web}}: External link in |website= (help)CS1 maint: url-status (link)
  47. ^ "Frost & Sullivan Recognizes DigiCert with its 2017 North American Visionary Innovation Leadership Award for Internet of Things Security". https://www.prnewswire.com/. Sep 12, 2017. {{cite web}}: External link in |website= (help)CS1 maint: url-status (link)
  48. ^ Helme, Scott (11 September 2019). "Extended Validation not so... extended? How I revoked $1,000,000 worth of EV certificates!". Archived from the original on 2019-09-11. Retrieved 2022-03-24.
  49. ^ Helme, Scott (4 January 2022). "If it looks like a duck, swims like a duck, and QWACs like a duck, then it's probably an EV Certificate". Retrieved 24 March 2022.
  50. ^ "Mozilla and the EFF publish letter about the danger of Article 45.2 | The Mozilla Blog". blog.mozilla.org. Retrieved 2022-03-24.
  51. ^ "Experts urge EU not to force insecure certificates in web browsers". BleepingComputer. Retrieved 2022-03-24.
  52. ^ Callas, Alexis Hancock and Jon (2022-02-09). "What the Duck? Why an EU Proposal to Require "QWACs" Will Hurt Internet Security". Electronic Frontier Foundation. Retrieved 2022-03-24.

External links[edit]