高华气象

CEO Blog

A virtual club to communicate with peers and users in the cryptographic industry
Meet friends on blog, it is my mission to popularize cryptographic knowledge, cryptographic application and zero trust ideas.

  • Recommended
  • 密码讲堂
  • 密码生态
  • 后量子密码
  • 网站安全
  • 邮件安全
  • 文档安全
  • 零信浏览器
  • 身份可信
  • 零信任
  • 市场简报
  • 其它话题
  • Deep thoughts on "Google no longer trusts Chunghwa Telecom CA"

    Deep thoughts on "Google no longer trusts Chunghwa Telecom CA"

    This article recognizes the problems in the SSL certificate supply chain by analyzing the incident in which Google browser does not trust the SSL certificate issued by Chunghwa Telecom CA, and provides SSL certificate users with a reliable solution to solve such crisis.

    July 07, 2025Read more
    ACME Client Software Innovation - Hardwareization

    ACME Client Software Innovation - Hardwareization

    This article analyzes the technical difficulties encountered by SM2 ACME client software and proposes a software hardwareization solution. This is the best solution for automatic management of dual-algorithm SSL certificates with zero modification to the original Web server and zero impact on the existing business system.

    June 25, 2025Read more
    47 Days! SSL Certificate Huge Change!

    47 Days! SSL Certificate Huge Change!

    The international standard for shortening the validity period of SSL certificates officially came into effect today. This is a big deal! It is a direction indicator for the development of global digital security, and it indicates that digital security is moving towards a security-first mindset. This article provides an in-depth interpretation of the huge business opportunities brought about by this change!

    May 16, 2025Read more
    OV SSL certificate is the first choice for intranet SSL certificate

    OV SSL certificate is the first choice for intranet SSL certificate

    This article provides a guide for choosing intranet SSL certificates, explains why intranet OV SSL certificates that were validated the identity of the organization are preferred, and illustrates what an intranet OV SSL certificate looks like.

    April 21, 2025Read more
    Guide to deploying SSL certificates for intranet website systems

    Guide to deploying SSL certificates for intranet website systems

    This article briefly introduces the three commonly used solutions for deploying SSL certificates on intranet website systems, and then focuses on the fourth solution created by ZoTrus. It recommends that users give priority to the intranet SSL certificate automation management solution - deploying the Intranet HTTPS Automation Gateway.

    April 07, 2025Read more
    Intranet needs SSL certificate automation more

    Intranet needs SSL certificate automation more

    Intranet traffic is confidential data; it's time to say goodbye to naked traffic! That is to deploy ZoTrus Intranet HTTPS Automation Gateway to quickly realize the automation of intranet SSL certificate, to effectively ensure the security of intranet traffic.

    March 27, 2025Read more
    SSL certificate validity period will be shortened to 47 days

    SSL certificate validity period will be shortened to 47 days

    SSL certificate new policy is coming, the validity period will be gradually shortened to 45 days, which deserves industries and users to pay great attention and prepare in advance. Choose the right technical solution according to your application system situation, and you must choose the original Web server zero change automation solutions.

    December 09, 2024Read more
    One Article Clarifies Four Very Brain-Burning WAF Terms

    One Article Clarifies Four Very Brain-Burning WAF Terms

    This article explains four brain-burning WAF terms in an easy-to-understand manner, and only by understanding these terms can you correctly judge the protection performance of WAF and correctly select WAF devices and cloud WAF services. This article further explains why WAF needs to automate SSL certificate management.

    May 29, 2024Read more
    Intranet SSL certificates must also support certificate transparency

    Intranet SSL certificates must also support certificate transparency

    ZoTrus SM2 Certificate Transparency system supports SM2/RSA/ECC algorithm SSL certificates, which is the first in the world, providing technical exploration, operation and maintenance practices for the unified transparency management of RSA/ECC SSL certificates and SM2 SSL certificates.

    April 22, 2024Read more
    Intranet SSL Certificate is the Must for Intranet Web Security

    Intranet SSL Certificate is the Must for Intranet Web Security

    Intranet web security requires intranet SSL certificate and browser that trust the intranet SSL certificate. CerSign Intranet SSL Certificate plus the completely free SM2 browser - ZT Browser perfectly solves the problem of intranet HTTPS encryption, welcome to choose the CerSign Intranet SSL Certificates and ZT Browser.

    April 22, 2024Read more
    The 90-day SSL certificate countdown begins, are you ready?

    The 90-day SSL certificate countdown begins, are you ready?

    The 90-day certificate countdown has begun, but it's not scary! ZoTrus Technology already has a complete solution available; you only need to choose the appropriate solution according to your business needs in advance and implement this solution. Once implemented, you will completely get rid of the trouble of SSL certificates and enjoy worry-free https encryption.

    April 21, 2023Read more
    Google wants to “Move together” or “Remove” other CAs?

    Google wants to “Move together” or “Remove” other CAs?

    This article gives a solution to Google's plan to shorten the validity period of SSL certificates to 90 days. This solution is not ACME Client software, but the SM2 ACME Gateway hardware and SM2 ACME Cloud service. This is the only feasible solution.

    March 14, 2023Read more
    Zero reconstruction for SM2 https encryption (II)

    Zero reconstruction for SM2 https encryption (II)

    "Commercial Cryptography Reconstruction" takes time and effort, but it must be done! what to do? ZoTrus launched the SM2 HTTPS Gateway innovatively, built-in SM2 ACME client, realized the SM2 https encryption without any reconstruction! The acme solution, the first choice for e-government website Sm2 https encryption reconstruction!

    January 06, 2023Read more
    SSL certificate automatic deployment, ensure uninterrupted https encryption of business system

    SSL certificate automatic deployment, ensure uninterrupted https encryption of business system

    The SM2 ACME Service is currently the only innovative cloud service that can automatically apply for and configure SM2 SSL certificate and ECC SSL certificate without interruption. This is the must choice for ensuring uninterrupted https encryption.

    January 06, 2023Read more
    Three Misunderstandings of Website Security

    Three Misunderstandings of Website Security

    There are three misunderstandings in website security. This article is based on fully understanding the simple security awareness of website owners and website administrators, and from the professional perspective of a senior security expert to popularize the dangers of the website. This is not just a matter of compliance, but a problem that must be fully realized that website security is essential to ensure the reliable operation of the business and the ability to do business well with peace of mind and concentration. This article is worth a read!

    December 06, 2022Read more
    Zero reconstruction for SM2 https encryption (I)

    Zero reconstruction for SM2 https encryption (I)

    "Commercial Cryptography Reconstruction" is a hot word, which is time-consuming and labor-intensive, but it must be done! How to do? ZoTrus Technology and Alibaba Cloud joint to create a zero-reconstruction SM2 https encryption solution, which realizes the SM2 https encryption without any reconstruction!

    November 04, 2022Read more
    Is China ready for the SSL certificate “broken supply”?

    Is China ready for the SSL certificate “broken supply”?

    The RSA SSL certificate has been revoked and “broken supply” in Russia after the Russia-Ukraine conflict. This extreme situation is very likely that one day in the future will also occur in China! So, is China ready for emergency preparations? This article gives an accurate answer!

    November 04, 2022Read more
    SM2 Certificate Transparecncy ensure the security of SM2 SSL certificates

    SM2 Certificate Transparecncy ensure the security of SM2 SSL certificates

    The Certificate Transparency mechanism has successfully protected the security of 7.4 billion globally trusted SSL certificates. Can we learn from this mechanism to ensure the security of the SM2 SSL certificates? The answer is YES, definitely! That is the SM2 Certificate Transparency mechanism.

    September 30, 2022Read more
    China online banking start to use SM2 algorithm https encryption

    China online banking start to use SM2 algorithm https encryption

    The Russia-Ukraine conflict caused the RSA SSL certificate deployed by Russia’s online banking to be revoked, and all users cannot access the online banking system normally. China's online banking systems are also deployed RSA SSL certificate that may be revoked at any time. How to prevent the risk of revoking, the Bank of China has given the correct answer.

    August 01, 2022Read more
    The third of three steps of zero trust security for websites: trusted identity validation

    The third of three steps of zero trust security for websites: trusted identity validation

    Zero trust is a security principle, it is also very suitable for website security. All browsers display HTTP websites as "Not secure," which is zero trust to websites that don't have a validated trusted identity. ZoTrus Website Security Cloud Service realizes HTTPS encryption, cloud WAF protection and trusted identity validation with one click, efficiently and quickly protects website security, and perfectly realizes the three steps of zero trust security for websites.

    June 24, 2022Read more
    The second of three steps of zero trust security for websites: cloud WAF protection

    The second of three steps of zero trust security for websites: cloud WAF protection

    Zero trust is a security principle, it is also very suitable for website security. Never trust every web connection, always verify, allow normal connections, and block malicious connections. ZoTrus Website Security Cloud Service is a one-click realization of cloud WAF protection, efficient and fast protection of website security, and the perfect realization of the second of three steps of zero trust security for websites.

    June 22, 2022Read more
    The first of three steps of zero trust security for websites: HTTPS encryption

    The first of three steps of zero trust security for websites: HTTPS encryption

    Zero trust is a security principle, it is also very suitable for website security. HTTPS encryption is zero trust to HTTP cleartext transmission. ZoTrus Website Security Cloud Service is a one-click implementation of HTTPS encryption, efficient and fast protection of website security, and the perfect realization of the first of three steps of zero trust security for websites.

    June 20, 2022Read more
    Edge cloud WAF has more technical advantages than central cloud WAF

    Edge cloud WAF has more technical advantages than central cloud WAF

    Website security requires https encryption and cloud WAF protection, but in order to improve user experience, CDN plus edge WAF protection is most needed. The rapid product iteration of ZoTrus Website Security Cloud Service only provides the most needed and best website security cloud service.

    June 15, 2022Read more
    Website security cloud service will surely become the standard for all websites

    Website security cloud service will surely become the standard for all websites

    Website Security Cloud Service, a website security solution that designed for the cloud era, a cloud service that leads website security into the 2.0 era, will surely become the standard for all websites. This article explains this prediction in detail.

    June 13, 2022Read more
    Re-understanding SSL certificate

    Re-understanding SSL certificate

    The DV SSL certificate, which only validates the domain name control, has accounted for 83.43% of the SSL certificate. The SSL certificate has been out of shape and turned into an encryption tool, and the original intention of proving the identity of the website has been lost. What to do? Does the trusted identity of a website no longer matter?

    June 06, 2022Read more
    SME websites are most vulnerable to cyber attacks

    SME websites are most vulnerable to cyber attacks

    Due to the inability of small and medium-sized enterprises to invest heavily in network security, their websites have become the hardest hit areas for network attacks. Not only that, but compliance with the Cybersecurity Law is also a hard requirement for an enterprise. What should we do? This article has solutions to share.

    June 06, 2022Read more
    Magical CNAME

    Magical CNAME

    Some readers are familiar with CNAME domain name resolution. This article talks about how to use CNAME resolution to realize automatic https encryption and cloud WAF protection with one click, which really makes website security no longer a thing!

    June 06, 2022Read more
    70% of users will choose cloud WAF protection

    70% of users will choose cloud WAF protection

    WAF is Web Application Firewall, so what is WAAP? Why Gartner's 2021 WAF Magic Quadrant Predictions: By 2024, 70% of organizations will favor cloud WAAP services? This article has interpretation, the author firmly believes that this ratio must be more than 90%!

    June 01, 2022Read more
    Get done the Two protection compliance with One click

    Get done the Two protection compliance with One click

    “Cybersecurity Protection” and “Cryptography Protection” are required to ensure the security of information systems in China. Both require the information system to use some hi-techs to protect. Can it be done in one click? The best answers are given.

    June 01, 2022Read more
    "Install SSL certificate" will disappear from the dictionary

    "Install SSL certificate" will disappear from the dictionary

    Installing an SSL certificate has troubled website managers for 28 years. Although the ACME protocol does not need to install an SSL certificate, but it needs to install the ACME client software. Why does the author assert that "install SSL certificate" will disappear from the dictionary? Please read this article to discovery the mystery.

    June 01, 2022Read more
    It is urgent to popularize cloud WAF protection

    It is urgent to popularize cloud WAF protection

    It can be seen from "China Internet Network Security Report" issued by CNCERT/CC: China website security situation is still very serious, especially the security problems such as website backdoor, webpage tampering and website trojan. This article gives solutions, worth reading!

    June 01, 2022Read more
    Virtual hosting website can also have HTTPS

    Virtual hosting website can also have HTTPS

    There are more than 3 million SME websites in China that are in an "unsecure" state, and browsers are displayed as "Not secure". These websites are basically virtual hosting websites, which are caused by the inability to deploy SSL certificates. What should we do? ZoTrus gives the best answer!

    June 01, 2022Read more
    ACME vs CWAF

    ACME vs CWAF

    This article discloses the technical solution selection process of the company's plan to provide a fully automatic https encryption service. The purpose is to allow customers to have a clear comparison of the two technical routes and make a wise choice to meet their needs.

    June 01, 2022Read more
    SSL certificate deployment must be "One machine, One certificate"

    SSL certificate deployment must be "One machine, One certificate"

    This is a security issue that all websites’ administrators tend to ignore or do not think of when deploying SSL certificates, but it is very important. Therefore, the author thinks it is necessary to write a blog post on this matter, do not miss.

    May 23, 2022Read more
    What is Web Security 2.0?

    What is Web Security 2.0?

    You must have heard the term Web 2.0, so what is Web Security 2.0? Why does Web Security need to be upgraded to 2.0? How is it different from 1.0? Please see this article for details.

    April 29, 2022Read more
    Mobile App https encryption guideline

    Mobile App https encryption guideline

    Mobile Internet users have surpassed PC Internet users, which is a big challenge for mobile App security without a unified development standard. How to use https encryption as securely as a browser, this article is worth reading, don't miss it!

    April 22, 2022Read more
    "Three misunderstandings of SSL certificate" continuance

    "Three misunderstandings of SSL certificate" continuance

    The author published "Three Misunderstandings of SSL Certificate" in the "China Computer World" newspaper 18 years ago. Today, 18 years later, there are still some misunderstandings about SSL certificates, especially the misunderstanding of SM2 SSL certificate, so the author writes a continuance.

    March 21, 2022Read more