Comments on: Report: SSL Certificates Invalid For 219,000 Sites http://storefrontbacktalk.com/securityfraud/report-ssl-certificates-invalid-for-250000-sites/ Techniques, Tools and Tirades about Retail Technology and E-Commerce Sun, 20 May 2012 01:49:40 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: Devon March http://storefrontbacktalk.com/securityfraud/report-ssl-certificates-invalid-for-250000-sites/comment-page-1/#comment-54475 Devon March Thu, 12 Feb 2009 23:42:55 +0000 http://www.storefrontbacktalk.com/?p=2368#comment-54475 Lee you are spot on. "not always" means the browser is not keeping pace with technology and does not recognize expired CA's or the site admin didn't bother, can't afford the CA's fee to update the certificate. And yes Mozilla might as well just launch a sign the says "take your money and run" those dialogues are doing the right thing, warning that buyer beware. On the user side: I am looking for safe, reliable online retailers that offer human customer service and support. Additionally, I want to see all the signs that my information is secure like a green url bar that shouts "extended validation certificate found here" As far as the retailers go, if they can't extend a trustworthy environment to process financial transactions they will suffer the consequences of abandoned shopping carts, if the buyer even goes that far into the site. Lee you are spot on. “not always” means the browser is not keeping pace with technology and does not recognize expired CA’s or the site admin didn’t bother, can’t afford the CA’s fee to update the certificate.

And yes Mozilla might as well just launch a sign the says “take your money and run” those dialogues are doing the right thing, warning that buyer beware.

On the user side: I am looking for safe, reliable online retailers that offer human customer service and support. Additionally, I want to see all the signs that my information is secure like a green url bar that shouts “extended validation certificate found here”

As far as the retailers go, if they can’t extend a trustworthy environment to process financial transactions they will suffer the consequences of abandoned shopping carts, if the buyer even goes that far into the site.

]]> By: Lee http://storefrontbacktalk.com/securityfraud/report-ssl-certificates-invalid-for-250000-sites/comment-page-1/#comment-54436 Lee Thu, 12 Feb 2009 13:43:29 +0000 http://www.storefrontbacktalk.com/?p=2368#comment-54436 So online retailers lose some business, so what (like a snowstorm that keeps people home). My concern is with this statement "global enterprises sometimes fail to renew their sites’ SSL certificates. When they do, visitors are OFTEN presented with notices from their Web browsers telling them the sites are not verifiably secure for online transactions. " The word 'often' suggest 'not always, which suggests that sometime people are conducting online transactions that aren't secure. Is that what was meant? So online retailers lose some business, so what (like a snowstorm that keeps people home). My concern is with this statement “global enterprises sometimes fail to renew their sites’ SSL certificates. When they do, visitors are OFTEN presented with notices from their Web browsers telling them the sites are not verifiably secure for online transactions. ”
The word ‘often’ suggest ‘not always, which suggests that sometime people are conducting online transactions that aren’t secure. Is that what was meant?

]]>