KeyChest Blog

Microsoft Teams - It's Not Just One Certificate

Feb 4, 2020 3:14:47 PM / by Dan posted in certificate, https, key management

0 Comments

A friend tagged me yesterday on LinkedIn with an update that Microsoft Teams - a team communication service, something like Slack - had gone down due to an expired certificate. How can this even happen?

Read More

HashiCorp Vault and PKI

Jan 28, 2020 2:57:45 PM / by Dan posted in certificate, key management

0 Comments

I started playing with HashiCorp Vault about 2 years ago and I really struggled to start with. I didn't expect the simplicity. Here are some of my notes that may help you touch the ground running.

Read More

Certificate Monitoring - HTTPS/TLS

Nov 28, 2019 11:36:08 AM / by Dan posted in letsencrypt, certificate, https

0 Comments

As we continuously improve our own certificate management service, we keep an eye on other tools. There is a wide range of services and each of us has different requirements and preferences.

Read More

Automating HTTPS Issuance in KeyChest

Nov 21, 2019 10:10:44 AM / by Dan posted in certificate, keychest, key management

0 Comments

KeyChest's business model is based on the management of HTTPS expiry. Automation of certificate issuance is for us an additional service that moves it closer to a complete service to manage your internal and external certificates. What it means in practical terms is that we simply pass on our cost of certificates to all paying users of KeyChest.

Read More

Can blockchain remove the need for an SSL certificate authority?

Jun 14, 2019 2:08:01 PM / by Dan posted in certificate, security, quora

0 Comments

Let’s think about what blockchain does and what a certification authority (CA) does.

Read More

What is certificate pinning

Jun 7, 2019 8:53:19 AM / by Dan posted in certificate, phishing, attack

0 Comments

Some people argue that certificate pinning is a must to protect against sophisticated attacks. Some will say that it is a pain in the bottom. But what is it actually?

Read More

I always get SSL errors on a WiFi. What's the reason behind this?

May 19, 2019 9:28:23 PM / by Dan posted in certificate, quora, attack

0 Comments

WiFi routers should pass any traffic transparently unless its configuration is really messed up.

Read More

Is there a way to generate a self-signed EV SSL (X.509) certificate?

May 19, 2019 9:24:26 PM / by Dan posted in certificate, https, quora

0 Comments

Technically, all you need is to add correct extensions to your certificate, which will identify it as an EV certificate. CA/Browser forum defined one in https://cabforum.org/wp-content/... (section 9.3.2).

Read More