Controls

Why We Need Certificate Revocation

F5 Labs' David Warburton writes for Venafi, explaining why certificate revocation needs better management to help us detect bad certs.
September 11, 2018
1 min. read

Certificate revocation is an important, if ill understood, part of enterprise security. In this three-part blog series, I’ll explore why we need it, how you do it, and strategies for maximizing the benefits you get for it.

Certificates Everywhere

The use of digital certificates is growing exponentially. In particular, the move to a fully encrypted web is increasing the use of web server certificates. Google’s HTTPS transparency report shows their Chrome browser now handles around 70% of traffic over TLS with similar numbers reported by Mozilla’s Firefox. LetsEncrypt, the quickest growing and one of the largest Certificate Authorities on the web, create around 600,000 free certificates on their platform every single day.

Figure 1: Google Chrome HTTPS Usage

Read the full article published July 24, 2018 here: https://www.venafi.com/blog/why-we-need-certificate-revocation by Venafi.

Authors & Contributors
David Warburton (Author)
Director, F5 Labs

More from Learning Center

Forward and Reverse Shells
Forward and Reverse Shells
09/15/2023 article 5 min. read
Web Shells: Understanding Attackers’ Tools and Techniques
Web Shells: Understanding Attackers’ Tools and Techniques
07/06/2023 article 6 min. read
What Is Zero Trust Architecture (ZTA)?
What Is Zero Trust Architecture (ZTA)?
07/05/2022 article 13 min. read