The London Protocol
- Date:August 22, 2018
- Author(s):
- Sean Sposito
- Al Pascual
- Report Details: 4 pages, 0 graphics
- Research Topic(s):
- Cybersecurity
- Fraud & Security
- PAID CONTENT
Overview
Amidst an increasing number of phishing reports involving digital certificates, several Certificate Authorities (CAs) have banded together. For the first time, these arbiters of digital trust are cooperating in an effort to proactively ensure the certificates they’re providing (OV and EV Certificates, see below) to financial institutions and others are worthy of the trust that consumers place in them.
In late June — less than a month before Google released the 64th version of its Chrome browser, which began labeling unencrypted websites as unsafe — Comodo CA, Entrust Datacard, GlobalSign, GoDaddy, and Trustwave came to a broad agreement. Dubbed the London Protocol, the pact was announced by the CA Security Council during a CA/Browser Forum event in its namesake. It boils down to an initial promise to share URLs amongst themselves that have been flagged as potentially malicious through an agreed upon protocol.
Interested In This Report
Related content
More Cyber Lessons for Digital Bankers: It’s All About Trust
Some banking customers just do not trust the internet and are not comfortable using it. They trust their banks, though, and this presents an enormous opportunity for FIs to engage ...
Targeting TikTok: Rising Geopolitical Tension Should Put FIs on Guard
As a bipartisan group of legislators tries to put TikTok out of business in the United States over its China-based ownership and sketchy history of leveraging user data, U.S.-based...
Ransomware Negotiation Market Landscape 2022
Ransomware negotiation providers play a pivotal role in aiding financial institutions in their recovery of stolen and/or encrypted data and in conducting post-attack forensics to h...
Make informed decisions in a digital financial world