Symantec also announced the first available multi-algorithm SSL certificates with new ECC and DSA options which will help organizations protect their web eco-systems and strengthen the foundation of trust online.
Symantec began transitioning customers to its RSA 2048-bit SSL certificates last year as the National Institute of Standards and Technology (NIST) recommends all websites to migrate from RSA 1024-bit to 2048-bit certificates by January 1, 2014. It broadens its SSL portfolio with new security algorithms to address this requirement with increased protection and performance.
Symantec is the first CA to offer commercially available SSL certificates using Elliptic Curve Cryptography (ECC) and Digital Signature Algorithm (DSA). ECC is currently scheduled to be available in Symantec Managed PKI for SSL first half of 2013.
ECC advancements deliver greater security as Symantec ECC will be 10,000 times harder to break than an RSA 2048-bit key based on industry computation methods. Symantec 256-bit ECC certificates offer the equivalent security of a 3072-bit RSA certificate.
Server performance during peak loads will be greatly improved with the ability to process more requests per second with lower CPU utilization. EEC also improves server-to-desktop performance and response time. The server with an ECC certificate netted an average response of just 75 milliseconds.
ECC delivers higher scalability to handle the demands of online interactions across billions of connected endpoints.
Symantec will integrate ECC into the IT environments of several companies like Akamai, Citrix, F5, Google, HID Global, Juniper Networks, Opera and Red Hat.
Symantec ‘s Digital Signature Algorithm (DSA ) is now available in Symantec Managed PKI for SSL solution. DSA delivers the high security and performance to comply with U.S. government standards and allow market access. ECC and DSA are approved by the U.S. government and endorsed by the National Security Agency to meet their protection and compliance requirements.
Symantec’s SSL global customer survey of companies using more than 2,000 SSL certificates, reported an average loss of $222,000 last year due to unexpected certificate expiration, rogue certificates, misconfigured certificates, and in some instances lost millions of dollars due to downtime of critical business systems.
Symantec has a comprehensive view of a customer’s entire SSL portfolio with integrated monitoring, reporting and rating functions. Automation capability is expected to be available first half of 2013.
Symantec Secure App Service is a cloud based service that assures users that the application they are using is trusted and authenticated and has not been maliciously tampered with. The Secure App Service provides full audit and reporting capabilities to track activity for better control and protection. Secure App Service is scheduled to be available this summer with a full management GUI. It is already available today with a SOAP API for integration within the enterprise environment.
Malvertisements or malicious ads threaten online businesses and ad networks serving up online ads.
Symantec’s AdVantage is a secure cloud-based service that delivers real-time monitoring, notification and detailed forensics of malvertisement incidents. It gives ad networks and publishers immediate insights through visual tracing and comprehensive incident reporting to quickly remediate issues and reduce risk in display advertising.