This article was first published by the CCID Cryptography Information Security Official WeChat Account. From the perspective of national security, it discusses that China must build and improve the commercial cryptography HTTPS encryption ecosystem ASAP and introduces two ecosystem-related products created by ZoTrus.
The two SM2 SSL certificate ecosystems created by ZoTrus have made it possible to popularize SM2 HTTPS encryption. The first year of the popularization of SM2 HTTPS encryption in China is coming, China websites will start the year of SM2 algorithm protection! Are you ready?
ACME realizes the automatic application and deployment of international SSL certificates, and SM2 ACME realizes the automatic application and deployment of dual SSL certificates of SM2 SSL certificate and ECC SSL certificate, and it also realizes the support of SM2 algorithm of web servers. It is the ultimate solution for HTTPS encryption!
The SM2 ACME Service is currently the only innovative cloud service that can automatically apply for and configure SM2 SSL certificate and ECC SSL certificate without interruption. This is the must choice for ensuring uninterrupted https encryption.
The National Day is a festival celebrated by the whole China. The author believes that in addition to "celebration", the focus should be "presenting". What to give to the National Day is more important because the prosperity of the country requires the dedication of everyone and every enterprise. ZoTrus Technology presented the world's exclusive debut of the cryptography core system on the National Day.
The Certificate Transparency mechanism has successfully protected the security of 7.4 billion globally trusted SSL certificates. Can we learn from this mechanism to ensure the security of the SM2 SSL certificates? The answer is YES, definitely! That is the SM2 Certificate Transparency mechanism.
To issue an SSL certificate, user must first verify the domain name control. However, what if the CA system maliciously or mistakenly issues an unverified SSL certificate for a domain name? The certificate transparency mechanism designed by Google is to solve this problem, and it is a zero trust to the CA system and the certificate issuance behavior.
The SM2 certificate transparency mechanism, together with the website filing mechanism and the domain name registration real-name system that have been implemented in China, form a complete website security system from domain name registration (website birth) to website operation to website security (encryption), which will be truly powerful to ensure the security and controllability of China's websites and the Internet, each mechanism is indispensable.
This is a question that everyone may not care about. To ensure the security of the website, it is necessary to apply for and deploy an SSL certificate. So, who is securing the global trusted SSL certificates? This article is easy to understand, the metaphor is appropriate, and it explains the certificate transparency clearly that worth reading!