Overview

Amidst an increasing number of phishing reports involving digital certificates, several Certificate Authorities (CAs) have banded together. For the first time, these arbiters of digital trust are cooperating in an effort to proactively ensure the certificates they’re providing (OV and EV Certificates, see below) to financial institutions and others are worthy of the trust that consumers place in them.

In late June — less than a month before Google released the 64th version of its Chrome browser, which began labeling unencrypted websites as unsafe — Comodo CA, Entrust Datacard, GlobalSign, GoDaddy, and Trustwave came to a broad agreement. Dubbed the London Protocol, the pact was announced by the CA Security Council during a CA/Browser Forum event in its namesake. It boils down to an initial promise to share URLs amongst themselves that have been flagged as potentially malicious through an agreed upon protocol.

Learn More About This Report & Javelin

Related content

October 31, 2024
Threat Intel Odyssey: Mapping the Convergence of Social Cyber Risks

Successful sharing of threat intelligence must move beyond the borders of traditional financial services and governments to include social media, a breeding ground for cybercrime a...

September 27, 2024
2024 Cyber Trust in Banking Scorecard

In this scorecard, Javelin evaluates leading financial institutions’ level of cyber trust based on key components: privacy, cybersecurity, education and resolution support. Shiftin...

August 26, 2024
Cyber Trust in Banking: Privacy Path to Maturity

For consumers, privacy is the fundamental determinant of cyber trust. The degree to which financial institutions protect consumer privacy and enhance authentication and identity ve...

Make informed decisions in a digital financial world

Let's Connect