Symantec Deprecation: Trust Beyond the Browser Lock
- Date:March 16, 2018
- Author(s):
- Sean Sposito
- Test
- Report Details: 13 pages, 3 graphics
- Research Topic(s):
- Cybersecurity
- Fraud & Security
- PAID CONTENT
Overview
As foot traffic to branches dwindles and online financial services expands, there is no more important function for bankers to consider than the means by which customers securely access their online and mobile banking pages. Concurrently, big changes are coming to digital certificates — which manifested themselves in the lock to the left of the URL broswer bar — and financial institutions must react quickly and decisively
By the end of October, Chrome and Firefox browsers will distrust all Symantec-issued certificates. The act is the fruition of a community investigation, – which found that Symantec or its resellers were issuing certificates inappropriately, sometimes to unauthorized parties. At one time, Symantec issued nearly 30 percent of all the certificates on public-facing servers.
Despite the best efforts of Internet governance participants, the decision is having a profound impact on businesses that operate on the Internet — including FIs — creating costs in the short term, and a need for more input in the future.
Key questions discussed in this report:
- Why are Google and Mozilla deprecating existing Symantec certificates?
- What steps can banks take to adjust to the deprecation dates?
- How are major browser influences shaping the Internet?
- How are criminals reacting to those changes?
Methodology
Consumer data in this report is based on information collected in a random-sample panel survey:
November 2017 survey of 5,000 respondents, the maximum margin of sampling error is +/-
1.39 percentage points at the 95% confidence level.
Javelin conducted a series of interviews involving industry executives and other relevant stakeholders to gain an understanding of the Symantec Deprecation. Interviewees represented a variety of organizations, including financial institutions, certificate authorities, and browsers.
Learn More About This Report & Javelin
Related content
November 07, 2024
2025 Cybersecurity Trends
Expanding security automation by relying more heavily on security orchestration, artificial intelligence, and data analytics, as well as a more inclusive and expansive definition o...
October 31, 2024
Threat Intel Odyssey: Mapping the Convergence of Social Cyber Risks
Successful sharing of threat intelligence must move beyond the borders of traditional financial services and governments to include social media, a breeding ground for cybercrime a...
September 27, 2024
2024 Cyber Trust in Banking Scorecard
In this scorecard, Javelin evaluates leading financial institutions’ level of cyber trust based on key components: privacy, cybersecurity, education and resolution support. Shiftin...
Make informed decisions in a digital financial world