The London Protocol
- Date:August 22, 2018
- Author(s):
- Sean Sposito
- Test
- Report Details: 4 pages, 0 graphics
- Research Topic(s):
- Cybersecurity
- Fraud & Security
- PAID CONTENT
Overview
Amidst an increasing number of phishing reports involving digital certificates, several Certificate Authorities (CAs) have banded together. For the first time, these arbiters of digital trust are cooperating in an effort to proactively ensure the certificates they’re providing (OV and EV Certificates, see below) to financial institutions and others are worthy of the trust that consumers place in them.
In late June — less than a month before Google released the 64th version of its Chrome browser, which began labeling unencrypted websites as unsafe — Comodo CA, Entrust Datacard, GlobalSign, GoDaddy, and Trustwave came to a broad agreement. Dubbed the London Protocol, the pact was announced by the CA Security Council during a CA/Browser Forum event in its namesake. It boils down to an initial promise to share URLs amongst themselves that have been flagged as potentially malicious through an agreed upon protocol.
Learn More About This Report & Javelin
Related content
Privacy and KYC Requirements: Navigating the Labyrinth
Data privacy and security are hot-button issues for consumers and regulators. FIs must balance consumer privacy with the need to collect information for regulatory compliance. Furt...
Customer Contact Centers: Heroes in Cybercrime Remediation, Fraud Prevention
Criminals increasingly use cyberattacks and scams to target consumers, and FI call centers are often relied upon for victim assistance. The key will be FI customer-oriented contact...
IoT Devices Create Privacy Nightmares for Banks, Small Businesses
IoT devices allow more convenient customer and business interactions, but the privacy and security costs can be too high, especially for financial institutions and small businesses...
Make informed decisions in a digital financial world