FAQ: ECC and DSA Certificates Website Security Solutions. Frequently Asked Questions

Similar documents
White Paper. Enhancing Website Security with Algorithm Agility

Symantec Managed PKI for SSL Support Overview. How to get quick and convenient customer support

Symantec Workspace Virtualization 7.6

Symantec App Center. Mobile Application Management and Protection. Data Sheet: Mobile Security and Management

How Extended Validation SSL Brings Confidence to Online Sales and Transactions

Symantec Managed PKI Service Deployment Options

Beginner s Guide to SSL Certificates

Raise your Google Ranking

Installation and usage of SSL certificates: Your guide to getting it right

Symantec Verification Overview.BANK Verification

Frequently Asked Questions. Frequently Asked Questions: Securing the Future of Trust on the Internet

Symantec Encryption Solutions for , Powered by PGP Technology

Securing Microsoft Exchange 2010 With VeriSign Authentication Services

Managing SSL Certificates with Ease

Securing Microsoft Exchange 2010 with Symantec SSL Certificates

Simplify SSL Certificate Management Across the Enterprise

How Drive Encryption Works

How Endpoint Encryption Works

Comparing Cost of Ownership: Symantec Managed PKI Service vs. On- Premise Software

Choosing a Cloud Hosting Provider with Confidence

Symantec Backup Exec.cloud

NetBackup Best Practice Using Tape Storage with Deduplicating Disk Storage

Simplify Your Windows Server Migration

How To Use Netbackup For Business

Is online backup right for your business? Eight reasons to consider protecting your data with a hybrid backup solution

Symantec Desktop and Laptop Option 7.6

Symantec Client Management Suite 7.6 powered by Altiris technology

Complete Website Security

Symantec Endpoint Protection

Wildcard and SAN: Understanding multi-use SSL Certificates

Biomni Front Office for NetBackup

Symantec Asset Management Suite 7.5 powered by Altiris technology

Why Digital Certificates Are Essential for Managing Mobile Devices

Closing the Vulnerability Gap of Third- Party Patching

Symantec Asset Management Suite 7.6 powered by Altiris technology

Choosing a Cloud Hosting Provider with Confidence

Seven Key Issues to Consider Before Selecting a Cloud Hosting Provider

Symantec NetBackup 7.5 What s New and Version Comparison Matrix

Endpoint Protection Small Business Edition 2013?

How to Provide Secure Single Sign-On and Identity-Based Access Control for Cloud Applications

White Paper. Business Continuity and Breach Protection: Why SSL Certificate Management is Critical to Today s Enterprise

Enterprise Vault 11 Feature Briefing

Leveraging Symantec CIC and A10 Thunder ADC to Simplify Certificate Management

Frequently Asked Questions. Frequently Asked Questions: Prioritizing Trust: Certificate Authority Security Best Practices

Symantec Mobile Security

White Paper. Simplify SSL Certificate Management Across the Enterprise

Symantec Enterprise Vault for Microsoft Exchange

Symantec Messaging Gateway 10.5

HTTPS is Fast and Hassle-free with CloudFlare

White Paper. Keeping Your Private Data Secure

Symantec Endpoint Protection

Symantec Enterprise Vault Discovery.cloud

Symantec Mobile Management for Configuration Manager 7.2

Forward Secrecy: How to Secure SSL from Attacks by Government Agencies

Balancing Cloud-Based Benefits With Security. White Paper

Reducing the Cost and Complexity of Web Vulnerability Management

Understanding SSL Certificates THAWTE IS A LEADING GLOBAL PROVIDER OF SSL CERTIFICATES

PROTECTED CLOUDS: Symantec solutions for consuming, building, or extending into the cloud

Don t Lose the Data: Six Ways You May Be Losing Mobile Data and Don t Even Know It

Don't Wait Until It's Too Late: Choose Next-Generation Backup to Protect Your Business from Disaster

Direct virtual machine creation from backup with BMR

Understanding SSL for Apps

SSL Certificate Renewal

understanding SSL certificates THAWTE IS A LEADING GLOBAL PROVIDER OF SSL CERTIFICATES

Solution Brief: Enterprise Security

Symantec Backup Exec.cloud Customer Pricing and Licensing Guide

Symantec Mobile Management 7.2

Preparing for a Cyber Attack PROTECT YOUR PEOPLE AND INFORMATION WITH SYMANTEC SECURITY SOLUTIONS

Website Security Partner Program. Path to Profitability

Achieving Business Agility Through An Agile Data Center

Symantec Enterprise Vault.cloud Overview

Symantec Global Intelligence Network 2.0 Architecture: Staying Ahead of the Evolving Threat Landscape

Securing Your Software for the Mobile Application Market

Best Practices for Running Symantec Endpoint Protection 12.1 on Point-of- Sale Devices

Two-Factor Authentication

Symantec NetBackup deduplication general deployment guidelines

Best Practices for Running Symantec Endpoint Protection 12.1 on the Microsoft Azure Platform

Endpoint Management and Mobility Solutions from Symantec. Adapting traditional IT operations for new end-user environments

Cyber Security Services: Data Loss Prevention Monitoring Overview

BEGINNERS GUIDE BEGINNERS GUIDE TO SSL CERTIFICATES: MAKING THE BEST CHOICE WHEN CONSIDERING YOUR ONLINE SECURITY OPTIONS

Enterprise Vault 10 Feature Briefing

NetSure Certificate means any of the types of Certificates that are subject to this Plan, as listed in Appendix A, List of Covered Services.

Satisfaction guaranteed: why a little reassurance goes a long way in e-commerce

Securing Your Enterprise in the Cloud. IT executives must be ready to move to the cloud safely

Microsoft Office 365 Migrations with Symantec Enterprise Vault.cloud

IBM i Version 7.3. Security Digital Certificate Manager IBM

Virtual Machine Protection with Symantec NetBackup 7

Protecting Point-of-Sale Environments Against Multi-Stage Attacks

SSL Server Rating Guide

Securing Mobile App Data - Comparing Containers and App Wrappers

Symantec Backup Exec 2012 Licensing Guide

Licensing Symantec Certificates

Symantec Business Critical Services for the Enterprise

Predictive Coding Defensibility and the Transparent Predictive Coding Workflow

Instant Recovery for VMware

Symantec Backup Exec 2012

How to Unlock Agility by Backing up to, from, and in the Cloud

SYMANTEC ENDPOINT PROTECTION SMALL BUSINESS EDITION

Enterprise Vault Whitepaper Configuring a NAS device as Enterprise Vault storage

Transcription:

Frequently Asked Questions FAQ: ECC and DSA Certificates

ECC and DSA Certificates CONTENTS Q1: What is DSA?... 3 Q2: What is ECC?... 3 Q3: Which type of certificate will make my web server faster?... 3 Q4: Are both ECC and DSA accepted by all browsers and devices?... 3 Q5: What is my business reason for installing additional certificates?... 3 Q6: Can I get these with any SSL Certificate type?... 3 Q7: Will adding or changing certificates save me any money in infrastructure costs?... 3 Q8: Can I cover more than one server with the same certificate?... 4 Q9: Can I get a trial ECC or DSA certificate the same way I get a regular RSA one?... 4 Q10: How do I install multiple certificates on a server?... 4 Q11: If I have an SSL Certificate currently, can I get these additional certificates any time?... 4 Q12: How do I handle multiple certificates at renewal?... 4 Q13: What if I need to replace a certificate?... 4 Q14: What happens if I need to revoke a certificate?... 4 2

Q1: What is DSA? The Digital Signature Algorithm (DSA) was developed by the United States government. DSA is a pair of large numbers that are computed according to the specified algorithm within parameters that enable the authentication of the signatory, and as a consequence, the integrity of the data attached. Digital signatures are generated through DSA, as well as verified. A DSA key pair will be the same size as the equivalent security RSA key. The key size will increase exponentially, the same way RSA does. Q2: What is ECC? Elliptic Curve Cryptography (ECC) provides similar functionality to the RSA algorithm, but requires less computing power. ECC encryption systems are based on the idea of using points on a curve to define the public/private key pair. The ECC key pair size will increase linearly, and is smaller than the equivalent security RSA key. Q3: Which type of certificate will make my web server faster? There are many factors that can affect web server speed. Symantec offers three different kinds of algorithms so that our customers can discover which certificate is the best option for their environment, or try out a combination in tandem. Q4: Are both ECC and DSA accepted by all browsers and devices? Not necessarily. While DSA is a requirement for dealing with certain Government Agencies, neither DSA nor ECC have the ubiquity of RSA in terms of client acceptance. For standard website transactions in the near future, RSA is and will likely remain the most used algorithm for SSL Certificates. Q5: What is my business reason for installing additional certificates? The usage of each certificate type may depend greatly on the type of transaction intended, reviewed against the capability of the client device in terms of computation, storage and speed. Factors to consider here include the processing power of the end device, storage space, bandwidth, power consumption, and algorithm ubiquity. For servers that allow you to install multiple certificates in tandem, there is no cost, no risk, and 100% coverage. Q6: Can I get these with any SSL Certificate type? For Enterprise customers, DSA is available with any SSL Certificate. ECC is available with any Premium SSL Certificate. Q7: Will adding or changing certificates save me any money in infrastructure costs? In testing, ECC has an improved server-side benefit of being able to accept more simultaneous handshakes compared to RSA. However, again, this must be weighed against what the client-side browsers, devices, or capabilities are. 3

Q8: Can I cover more than one server with the same certificate? No. Each algorithm s certificate will be issued for the same server. One server can have more than one certificate loaded, but the alternative certificates only include one server license. Q9: Can I get a trial ECC or DSA certificate the same way I get a regular RSA one? MPKI for SSL does not offer trial certificates regardless of the algorithm. However, you can get a free DSA certificate for the corresponding certificate product if you currently have a valid RSA-based Standard EV SSL, Standard SSL, or Standard Intranet SSL certificate. You can also get a free DSA and/or ECC certificate for the corresponding certificate product if you currently have a valid RSAbased Premium EV SSL, Premium SSL, or Premium Intranet SSL certificate. Q10: How do I install multiple certificates on a server? Each server has its own installation methods and customization plans. Please review the instructions available in our knowledge base here for how to install a certificate. https://knowledge.verisign.com/support/ssl-certificates-support/index. html?tid=symc_vrsn_kb Q11: If I have an SSL Certificate currently, can I get these additional certificates any time? Both algorithm alternative certificates will be available starting February 25, 2013 for MPKI customers. Q12: How do I handle multiple certificates at renewal? You renew your basic certificate in the usual fashion: Authorization and authentication review, then issue of the renewal certificate. After issuance, you will have the option to create one of these alternative certificates. Q13: What if I need to replace a certificate? You can replace the certificate as usual, except for the alternative certificate(s) you won t be able change the Subject Alternative Names (SANs) in the certificate. Q14: What happens if I need to revoke a certificate? Alternative certificates can be revoked independently of one another. However, you will not get the units back until you have revoked all certificates (RSA/DSA/ECC) for the same Domain Name/SANs within 30 days. 4

More Information Visit our website https://www.symantec.com/ssl-certificates To speak with a Product Specialist in the U.S. Call 1 (866) 893-6565 or 1 (650) 426-5112 To speak with a Product Specialist outside the U.S. For specific country offices and contact numbers, please visit our website. About Symantec Symantec protects the world s information, and is a global leader in security, backup, and availability solutions. Our innovative products and services protect people and information in any environment from the smallest mobile device, to the enterprise data center, to cloud-based systems. Our world-renowned expertise in protecting data, identities, and interactions gives our customers confidence in a connected world. More information is available at www.symantec.com or by connecting with Symantec at go.symantec.com/socialmedia. Symantec World Headquarters 350 Ellis St. Mountain View, CA 94043 USA +1 (650) 527 8000 1 (800) 721 3934 www.symantec.com Copyright 2013 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, and the Checkmark Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. UID 149/1/13

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information