DigiCert on:
[Wikipedia]
[Google]
[Amazon]
DigiCert, Inc. is an American digital security company headquartered in Lehi, Utah, with offices in Australia, Ireland, Japan, India, France, South Africa, Switzerland and United Kingdom. As a
DigiCert was founded by Ken Bretschneider in 2002. Bretschneider served as CEO and chairman of the board until 2012 when he was appointed Executive chairman and Nicholas Hales became CEO. In 2016, the company named John Merrill CEO.
In 2015, DigiCert acquired the CyberTrust Enterprise SSL business from Verizon Enterprise Solutions, becoming the world's second-largest certificate authority for high-assurance or extended validation (EV) TLS/SSL certificates.
On August 28, 2015, in one of the largest investments in a Utah-based company to date, private equity firm
certificate authority
In cryptography, a certificate authority or certification authority (CA) is an entity that stores, signs, and issues digital certificates. A digital certificate certifies the ownership of a public key by the named subject of the certificate. Thi ...
(CA) and trusted third party
In cryptography, a trusted third party (TTP) is an entity which facilitates interactions between two parties who both trust the third party; the Third Party reviews all critical transaction communications between the parties, based on the ease of c ...
, DigiCert provides the public key infrastructure (PKI) and validation required for issuing digital certificates or TLS/SSL certificates. These certificates are used to verify and authenticate the identities of organizations and domains and to protect the privacy and data integrity of users’ digital interactions with web browser
A web browser is application software for accessing websites. When a user requests a web page from a particular website, the browser retrieves its files from a web server and then displays the page on the user's screen. Browsers are used o ...
s, email clients, documents, software programs, apps, networks and connected IoT devices.
According to independent survey company Netcraft
Netcraft is an Internet services company based in Bath, Somerset, England. The company provides cybercrime disruption services across a range of industries.
History
Netcraft was founded by Mike Prettejohn. The company provides web server and ...
, "DigiCert is the world's largest high-assurance certificate authority, commanding 60% of the Extended Validation Certificate market, and 96% of organization-validated certificates globally."
History
DigiCert was founded by Ken Bretschneider in 2002. Bretschneider served as CEO and chairman of the board until 2012 when he was appointed Executive chairman and Nicholas Hales became CEO. In 2016, the company named John Merrill CEO.
In 2015, DigiCert acquired the CyberTrust Enterprise SSL business from Verizon Enterprise Solutions, becoming the world's second-largest certificate authority for high-assurance or extended validation (EV) TLS/SSL certificates.
On August 28, 2015, in one of the largest investments in a Utah-based company to date, private equity firm Thoma Bravo
Thoma Bravo, LP, is an American private equity and growth capital firm with offices in San Francisco, Chicago and Miami. It is known for being particularly active in acquiring software companies and has over $114 billion in assets under manage ...
acquired a majority stake in DigiCert, with TA Associates
TA Associates, founded in 1968, is one of the early modern-era private equity firms in the United States. The firm leads buyouts and minority recapitalizations of profitable growth companies. TA invests across five industry groups: technology, hea ...
a leading global growth private equity firm, holding a minority share. Thoma Bravo was quoted as saying, "DigiCert represents an outstanding investment opportunity to back a market leader… known for its consistent innovation and first-rate customer service."
In 2017, DigiCert acquired the TLS/SSL and PKI businesses from the world's largest certificate authority, Symantec (including brands GeoTrust
GeoTrust is a digital certificate provider. The GeoTrust brand was bought by Symantec from Verisign in 2010, but agreed to sell the certificate business (including GeoTrust) in August 2017 to private equity and growth capital firm Thoma Bravo LL ...
, RapidSSL (part of GeoTrust), Thawte
Thawte Consulting (pronounced "thought") is a certificate authority (CA) for X.509 certificates. Thawte was founded in 1995 by Mark Shuttleworth in South Africa. As of December 30, 2016, its then-parent company, Symantec Group, was collectivel ...
and Verisign
Verisign Inc. is an American company based in Reston, Virginia, United States that operates a diverse array of network infrastructure, including two of the Internet's thirteen root nameservers, the authoritative registry for the , , and gene ...
), for $950 million. The acquisition resulted from questions first raised in 2015 by web browsers Google
Google LLC () is an American Multinational corporation, multinational technology company focusing on Search Engine, search engine technology, online advertising, cloud computing, software, computer software, quantum computing, e-commerce, ar ...
and Mozilla
Mozilla (stylized as moz://a) is a free software community founded in 1998 by members of Netscape. The Mozilla community uses, develops, spreads and supports Mozilla products, thereby promoting exclusively free software and open standards, w ...
about the authenticity of certificates issued by Symantec, which represented one-third of all TLS/SSL certificates on the web. In September 2017, Google and Mozilla announced they would "... reduce, and ultimately remove, trust in Symantec's Root Keys in order to uphold users’ security and privacy when browsing the web." The final distrust deadline for certificates chaining to Symantec roots was set for October 2018. Symantec agreed to transfer its certificate business to its top TLS/SSL competitor, DigiCert, whose roots were trusted by browsers. In December 2017, DigiCert began issuing free replacements for all distrusted certificates from Symantec, GeoTrust, RapidSSL, Thawte and VeriSign. By Oct. 2018, the company had revalidated more than 550,000 organizational identities and issued more than 5 million replacement certificates for affected customers.
In 2018, DigiCert acquired QuoVadis, a trust service provider (TSP) headquartered in Switzerland offering qualified digital certificates, PKI services and PrimoSign electronic signature software. Qualified digital certificates from QuoVadis (now backed by DigiCert) comply with eIDAS
eIDAS (electronic IDentification, Authentication and trust Services) is an EU regulation on electronic identification and trust services for electronic transactions in the European Single Market. It was established in EU Regulation 910/2014 ...
, a set of EU standards for electronic transactions requiring legal proof of authentication. The EU Payment Services Directive
The Revised Payment Services Directive (PSD2, Directive (EU) 2015/2366, which replaced the Payment Services Directive (PSD), Directive 2007/64/EC) is an EU Directive, administered by the European Commission (Directorate General Internal Market) t ...
mandated that banks and other financial institutions operating in Europe begin using qualified digital certificates by Jun. 2019. According to DigiCert, "... the QuoVadis acquisition aligns with the company's vision of providing globally dispersed and robust PKI-based solutions with local support."
In 2019, the company announced a new R&D division called DigiCert Labs, "... an initiative dedicated to researching and developing innovative approaches to security challenges." DigiCert Labs will collaborate with other enterprise labs – including Microsoft Research, Utimaco, ISARA and Gemalto
Gemalto was an international digital security company providing software applications, secure personal devices such as smart cards and tokens, and managed services. It was formed in June 2006 by the merger of two companies, Axalto and Gemplus ...
– and make grants to universities for the study of topics related to authentication
Authentication (from ''authentikos'', "real, genuine", from αὐθέντης ''authentes'', "author") is the act of proving an assertion, such as the identity of a computer system user. In contrast with identification, the act of indicatin ...
, data integrity
Data integrity is the maintenance of, and the assurance of, data accuracy and consistency over its entire life-cycle and is a critical aspect to the design, implementation, and usage of any system that stores, processes, or retrieves data. The ter ...
, encryption
In cryptography, encryption is the process of encoding information. This process converts the original representation of the information, known as plaintext, into an alternative form known as ciphertext. Ideally, only authorized parties can de ...
and identity. Initial research projects will focus on post-quantum cryptography
In cryptography, post-quantum cryptography (sometimes referred to as quantum-proof, quantum-safe or quantum-resistant) refers to cryptographic algorithms (usually public-key algorithms) that are thought to be secure against a cryptanalytic attack ...
and machine learning
Machine learning (ML) is a field of inquiry devoted to understanding and building methods that 'learn', that is, methods that leverage data to improve performance on some set of tasks. It is seen as a part of artificial intelligence.
Machine ...
.
In 2019, Clearlake Capital Group, L.P., a leading private investment firm, and TA Associates, an existing investor, reached an agreement to make a strategic growth investment in DigiCert. As part of the transaction, Clearlake and TA Associates become equal partners in the company.
In 2020, according to independent survey company Netcraft
Netcraft is an Internet services company based in Bath, Somerset, England. The company provides cybercrime disruption services across a range of industries.
History
Netcraft was founded by Mike Prettejohn. The company provides web server and ...
, "DigiCert is the world's largest high-assurance certificate authority, commanding 60% of the Extended Validation Certificate market, and 96% of organization-validated certificates globally."
DigiCert is a member of the CA/Browser Forum
The Certification Authority Browser Forum, also known as the CA/Browser Forum, is a voluntary consortium of certification authorities, vendors of Internet browser and secure email software, operating systems, and other PKI-enabled applications t ...
, an industry consortium that creates guidelines and standards for participating certificate authorities and web browsers. Dean Coclin, Sr. Director of Business Development at DigiCert, served as Vice-Chairperson of the CA/Browser Forum from Nov. 1, 2018 until Oct. 31, 2020.
DigiCert Inc. is of no relation to Digicert Sdn. Bhd, a Malaysian-based certification authority that issues certificates with weak keys and had its trust revoked by web browsers.
In January 2022, DigiCert acquired IoT security company Mocana. In June 2022, the company acquired DNS Made Easy, a DNS services provider.
On October 19, 2022 DigitCert named Dr. Amit Sinha CEO and Board Member. Amit had previously lead technology and innovation at cybersecurity leader Zscaler the previous 12 years.
Criticism
In 2019, Google security researcher Scott Helme revoked approximately a million dollars worth of extended verification certificates, a significant portion of which were DigiCert certificates.QWAC and EV
DigiCert was condemned for pushing QWAC scheme of certificate similar to EV certificates that undermined trust in certificates.References
External links
* {{DEFAULTSORT:Digicert Certificate authorities Privately held companies based in Utah Technology companies established in 2003 American companies established in 2003 2003 establishments in Utah Companies based in Utah County, Utah Lehi, Utah