w:en:GlobalSign

GlobalSign was founded in Belgium in 1996 and acquired in 2007 by GMO group in Japan (formerly GeoTrust Japan).{{Cite web |title=Outlook Series {{!}} GlobalSign To Compete With VeriSign |url=https://outlookseries.com/news/Services/1970.htm |access-date=2022-10-06 |website=outlookseries.com |archive-date=2022-10-06 |archive-url=https://web.archive.org/web/20221006203411/https://outlookseries.com/news/Services/1970.htm |url-status=live }}

In September 2011, as a precaution, GlobalSign suspended issuing authentication certificates temporarily after an anonymous hacker going by the name "ComodoHacker" claimed to have compromised their servers, as well as those of other certificate authorities.[https://www.bbc.co.uk/news/technology-14819257 BBC News - GlobalSign stops secure certificates after hack claim] {{Webarchive|url=https://web.archive.org/web/20230713175137/https://www.bbc.co.uk/news/technology-14819257 |date=2023-07-13 }}. Bbc.co.uk (2011-09-07). Retrieved on 2013-07-26. The company took the claim seriously enough to halt the signing/issuing of new certificates while investigating the claims; it resumed issuing certificates a week later.{{Cite web |last=Whittaker |first=Zack |title=Unpatched server led to GlobalSign breach |url=https://www.zdnet.com/article/unpatched-server-led-to-globalsign-breach/ |website=ZDNet |access-date=2020-09-09 |archive-date=2023-06-26 |archive-url=https://web.archive.org/web/20230626035704/https://www.zdnet.com/article/unpatched-server-led-to-globalsign-breach/ |url-status=live }} Dutch security company Fox-IT was contracted to analyze the breach and GlobalSign released a security incident report.{{cite web |author=Steve Waite |date=2011-12-13 |title=Security Incident Report |url=https://www.globalsign.com/en/resources/globalsign-security-incident-report.pdf |url-status=dead |archive-url=https://web.archive.org/web/20190323041336/https://www.globalsign.com/en/resources/globalsign-security-incident-report.pdf |archive-date=2019-03-23}} On December 13, 2011 GlobalSign released its final report on the incident.

The report concluded that while GlobalSign's own web server was breached and the certificate of this server was stolen, due to the air gap separating this web server from the certificate-issuing machine (the one holding the company's root certificate), there was no evidence of any rogue certificates issued or any customer data exposed, thus the remedial actions were limited to cancelling their own web server's certificate and patching its software. Sophos's Chester Wisniewski summarized the report and GlobalSign's response to the incident on his blog and concluded "Not only is the report thorough and convincing, but it appears that GlobalSign took every action, exactly as they should have, both during and after the incident."{{cite web |author=Chester Wisniewski |date=2011-12-15 |title=Google and EFF propose improvements to HTTPS as GlobalSign releases CA breach report |url=http://nakedsecurity.sophos.com/2011/12/15/google-and-eff-propose-improvements-to-https-as-globalsign-releases-ca-breach-report/ |access-date=2012-08-14 |archive-date=2023-06-04 |archive-url=https://web.archive.org/web/20230604042737/https://nakedsecurity.sophos.com/2011/12/15/google-and-eff-propose-improvements-to-https-as-globalsign-releases-ca-breach-report/ |url-status=live }}

As of January 2015, Globalsign was the 4th largest certificate authority in the world according to the Netcraft survey. GlobalSign was the first CA to improve revocation checking for HTTPS pages through the use of a CDN,{{Cite web |url=https://techcrunch.com/2012/11/01/cloudflare-globalsign-make-ssl-faster/ |title=CloudFlare Partners With GlobalSign To Make Loading Secure Web Pages Up To 6 Times Faster. TechCrunch (2012-11-01). Retrieved on 2013-07-26. |access-date=2017-06-25 |archive-date=2023-06-06 |archive-url=https://web.archive.org/web/20230606205822/https://techcrunch.com/2012/11/01/cloudflare-globalsign-make-ssl-faster/ |url-status=live }} and the company was also the first to offer IPv6 compliant revocation services ("CRL").[http://www.thewhir.com/web-hosting-news/globalsign-first-ca-to-offer-certificate-revocation-status-services-over-ipv6 GlobalSign First CA to Offer Certificate Revocation Status Services over IPv6] {{Webarchive|url=https://web.archive.org/web/20170520080656/http://www.thewhir.com/web-hosting-news/globalsign-first-ca-to-offer-certificate-revocation-status-services-over-ipv6 |date=2017-05-20 }}. Thewhir.com (2013-03-13). Retrieved on 2013-07-26.

In 2018, GlobalSign became a Qualified Trust Service Provider (QTSP) under the eIDAS regulation in both the European Union and the United Kingdom.{{Cite web |date=Oct 22, 2018 |title=GlobalSign achieves Qualified Trust Service Provider Recognition in Europe |url=https://hostingjournalist.com/globalsign-achieves-qualified-trust-service-provider-recognition-in-europe/ |access-date=October 1, 2022 |archive-date=October 1, 2022 |archive-url=https://web.archive.org/web/20221001030144/https://hostingjournalist.com/globalsign-achieves-qualified-trust-service-provider-recognition-in-europe/ |url-status=live }} In 2021, after the UK left the EU, GlobalSign was approved as the UK's first QTSP.{{Cite web |date=July 28, 2021 |title=UK: ICO approves first UK eIDAS qualified trust service provider |url=https://www.dataguidance.com/news/uk-ico-approves-first-uk-eidas-qualified-trust-service}}

File:GlobalSign extended validation example on Firefox 133 screenshot.webp certificate issued by GlobalSign]]

GlobalSign's services include managed PKI platform, S/MIME certification, TLS certificates, and a cloud-based certificate manager that integrates with Microsoft's AD and user account certifications.{{Cite web |last=Strom |first=David |date=2022-05-19 |title=How to choose a certificate management tool |url=https://www.csoonline.com/article/3660492/how-to-choose-a-certificate-management-tool.html |access-date=2022-11-07 |website=CSO Online |language=en |archive-date=2022-11-07 |archive-url=https://web.archive.org/web/20221107235855/https://www.csoonline.com/article/3660492/how-to-choose-a-certificate-management-tool.html |url-status=live }}

The company also provides certificates to authenticate IoT to address authentication needs in the Internet of Everything (IoE) market and to identity management as a cloud-based service.{{Cite web|title= How to deal with IoT challenges through abstraction|date= 7 April 2016|url= https://techcrunch.com/2016/04/06/how-to-deal-with-iot-challenges-through-abstraction/|access-date= 7 November 2022|archive-date= 7 November 2022|archive-url= https://web.archive.org/web/20221107235853/https://techcrunch.com/2016/04/06/how-to-deal-with-iot-challenges-through-abstraction/|url-status= live}} Its PKI services can scale based on the velocity, variety, and volume of IOT platforms, and can manage the identities of millions of devices.{{Cite web |last=Strom |first=David |date=2022-05-19 |title=How to choose a certificate management tool |url=https://www.csoonline.com/article/3660492/how-to-choose-a-certificate-management-tool.html |access-date=2023-01-05 |website=CSO Online |language=en |archive-date=2022-12-02 |archive-url=https://web.archive.org/web/20221202194142/https://www.csoonline.com/article/3660492/how-to-choose-a-certificate-management-tool.html |url-status=live }}

In November 2012, GlobalSign launched an online service that allows website administrators to confirm that they have correctly configured TLS across their websites and receive actionable guidance on how to remediate any faulty or exploitable TLS configurations.{{cite web

|url= https://finance.yahoo.com/news/globalsign-ssl-configuration-checker-provides-130000642.html

|title= GlobalSign SSL Configuration Checker Provides Guidance to Reduce Cybercriminals' Ability to Exploit Faulty SSL Configurations

|date= 2012-11-15

|access-date= 2017-01-15

|archive-date= 2023-03-14

|archive-url= https://web.archive.org/web/20230314204037/https://finance.yahoo.com/news/globalsign-ssl-configuration-checker-provides-130000642.html

|url-status= live

}}

The company has offices in the US, Europe and throughout Asia.

In 2012, GlobalSign released its free SSL Configuration Checker.{{Cite web |last=Kovacs |first=Eduard |date=2013-05-31 |title=50% of Sites Using GlobalSign SSL Configuration Checker Improved Security in 30 Minutes or Less |url=https://news.softpedia.com/news/50-of-Sites-Using-GlobalSign-SSL-Configuration-Checker-Improved-Security-in-30-Minutes-or-Less-357348.shtml |access-date=2022-11-14 |website=softpedia |language=english |archive-date=2022-11-14 |archive-url=https://web.archive.org/web/20221114231300/https://news.softpedia.com/news/50-of-Sites-Using-GlobalSign-SSL-Configuration-Checker-Improved-Security-in-30-Minutes-or-Less-357348.shtml |url-status=live }}{{Cite web |last=admin |date=2013-05-30 |title=GlobalSign Releases Findings of GlobalSign SSL Configuration Checker Evaluation for Q1 of 2013 |url=https://www.dailyhostnews.com/globalsign-releases-findings-of-globalsign-ssl-configuration-checker-evaluation-for-q1-of-2013 |access-date=2022-11-14 |website=Web Hosting {{!}} Cloud Computing {{!}} Datacenter {{!}} Domain News |language=en-US |archive-date=2022-11-14 |archive-url=https://web.archive.org/web/20221114231300/https://www.dailyhostnews.com/globalsign-releases-findings-of-globalsign-ssl-configuration-checker-evaluation-for-q1-of-2013 |url-status=live }} This tool lets websites check the effectiveness of their TLS configuration and provides remediation steps for websites that want to improve.{{Cite web |last=admin |date=2013-05-30 |title=GlobalSign Releases Findings of GlobalSign SSL Configuration Checker Evaluation for Q1 of 2013 |url=https://www.dailyhostnews.com/globalsign-releases-findings-of-globalsign-ssl-configuration-checker-evaluation-for-q1-of-2013 |access-date=2022-11-14 |website=Web Hosting {{!}} Cloud Computing {{!}} Datacenter {{!}} Domain News |language=en-US |archive-date=2022-11-14 |archive-url=https://web.archive.org/web/20221114231300/https://www.dailyhostnews.com/globalsign-releases-findings-of-globalsign-ssl-configuration-checker-evaluation-for-q1-of-2013 |url-status=live }}

In 2013, the company introduced its Auto Enrollment Gateway solution (AEG).{{Cite web |last=Kovacs |first=Eduard |date=2013-08-22 |title=GlobalSign Automates Management of Digital Certificates with Auto Enrollment Gateway |url=https://news.softpedia.com/news/GlobalSign-Automates-Management-of-Digital-Certificates-with-Auto-Enrollment-Gateway-377460.shtml |access-date=2022-11-23 |website=softpedia |language=english |archive-date=2022-11-23 |archive-url=https://web.archive.org/web/20221123044007/https://news.softpedia.com/news/GlobalSign-Automates-Management-of-Digital-Certificates-with-Auto-Enrollment-Gateway-377460.shtml |url-status=live }} Using AEG, companies can automate PKI management, certificate provisioning and deployment. The platform integrates with Windows Active Directory.

In 2018, GlobalSign released its IoT Identity Platform.{{Cite web |last=News |first=Industry |date=2018-06-26 |title=GlobalSign launches IoT Identity Platform addressing IoT device security requirements |url=https://www.helpnetsecurity.com/2018/06/26/globalsign-iot-identity-platform/ |access-date=2022-11-30 |website=Help Net Security |language=en-US |archive-date=2022-11-30 |archive-url=https://web.archive.org/web/20221130000553/https://www.helpnetsecurity.com/2018/06/26/globalsign-iot-identity-platform/ |url-status=live }} It uses PKI as its identity mechanism and is used in industries including manufacturing, agriculture, smart grid, payments, IoT gateways, and healthcare. One of the features of the platform is IoT Edge Enroll, which companies use to provision and manage the PKI-based identities. Edge Enroll provides device Registration Authority (RA), certificate lifecycle management and other support services.{{Cite web |last=News |first=Industry |date=2018-06-26 |title=GlobalSign launches IoT Identity Platform addressing IoT device security requirements |url=https://www.helpnetsecurity.com/2018/06/26/globalsign-iot-identity-platform/ |access-date=2022-12-02 |website=Help Net Security |language=en-US |archive-date=2022-11-30 |archive-url=https://web.archive.org/web/20221130000556/https://www.helpnetsecurity.com/2018/06/26/globalsign-iot-identity-platform/ |url-status=live }} The platform also includes IoT CA Direct and IoT CA Connect.

In May 2022, the latest version of the company's AEG platform was released.{{Cite web |date=May 11, 2022 |title=GlobalSign Ready S/MIME feature enables users to secure email certificates |url=https://www.helpnetsecurity.com/2022/05/11/globalsign-aeg-7-5/ |website=Help Net Security |access-date=December 21, 2022 |archive-date=December 21, 2022 |archive-url=https://web.archive.org/web/20221221183537/https://www.helpnetsecurity.com/2022/05/11/globalsign-aeg-7-5/ |url-status=live }} It automatically configures S/MIME certificates in Outlook for Windows using GlobalSign's cross-platform agent, XPA. XPA sets policies, and automatically enrolls, provisions, and installs certificates.

In 2014 GlobalSign acquired Helsinki-based Ubisecure Solutions, Inc., a privately held identity and access management (IAM) software developer.{{Cite web |last=greg |date=2014-09-30 |title=Finland's Ubisecure acquired by GMO Globalsign for IoT Identity - ArcticStartup |url=https://arcticstartup.com/finlands-ubisecure-acquired-by-gmo-globalsign-for-iot-identity/ |access-date=2022-11-14 |language=en-US |archive-date=2022-10-25 |archive-url=https://web.archive.org/web/20221025220314/https://arcticstartup.com/finlands-ubisecure-acquired-by-gmo-globalsign-for-iot-identity/ |url-status=live }} Ubisecure was spun out of GlobalSign in 2016.{{Cite web|url=https://www.ubisecure.com/corporate/revealing-new-ubisecure/|title=GlobalSign IAM is now Ubisecure Inc|date=November 30, 2016|access-date=June 18, 2020|archive-date=March 14, 2023|archive-url=https://web.archive.org/web/20230314173721/https://www.ubisecure.com/corporate/revealing-new-ubisecure/|url-status=live}}{{Cite web |last=greg |date=2014-09-30 |title=Finland's Ubisecure acquired by GMO Globalsign for IoT Identity - ArcticStartup |url=https://arcticstartup.com/finlands-ubisecure-acquired-by-gmo-globalsign-for-iot-identity/ |access-date=2022-10-25 |language=en-US |archive-date=2022-10-25 |archive-url=https://web.archive.org/web/20221025214808/https://arcticstartup.com/finlands-ubisecure-acquired-by-gmo-globalsign-for-iot-identity/ |url-status=live }}

• Certificate Authority/Browser Forum (CA/B Forum):{{Cite web |title=Members |url=https://cabforum.org/members/ |access-date=2022-12-15 |website=CAB Forum |language=en-US |archive-date=2015-01-24 |archive-url=https://web.archive.org/web/20150124013021/https://cabforum.org/members/ |url-status=live }}{{Cite web |title=GlobalSign joins the Certificate Authority Security Council to upgrade internet security |url=https://thepaypers.com/digital-identity-security-online-fraud/globalsign-joins-the-certificate-authority-security-council-to-upgrade-internet-security--750211 |access-date=2022-12-15 |website=thepaypers.com |language=en |archive-date=2022-12-15 |archive-url=https://web.archive.org/web/20221215195709/https://thepaypers.com/digital-identity-security-online-fraud/globalsign-joins-the-certificate-authority-security-council-to-upgrade-internet-security--750211 |url-status=live }} GlobalSign is a founding member of the CA/B Forum, which was established in 2013. They are actively involved with the organization's S/MIME and server certificate working groups.
• Microsoft Intelligent Security Association (MISA): GlobalSign has been a member of MISA since 2019.{{Cite web |last=Murphy |first=Ian |date=2019-02-27 |title=GlobalSign joins Microsoft ISA for mobile security |url=https://www.enterprisetimes.co.uk/2019/02/27/globalsign-joins-microsoft-isa-for-mobile-security/ |access-date=2022-12-15 |website=Enterprise Times |language=en-GB}}
• Cloud Signature Consortium: GlobalSign joined the consortium in 2018.{{Cite web |last=Jacob |first=Marc |date=2022-12-15 |title=GlobalSign rejoint le Cloud Signature Consortium et devient membre du programme de partenaires en signatures cloud Adobe |url=https://www.globalsecuritymag.fr/GlobalSign-rejoint-le-Cloud,20180411,77995.html |access-date=2022-12-15 |website=Global Security Mag Online |language=fr}}
• Certificate Authority Security Council (CASC) - joined in 2013.
• Adobe Cloud Signature Partner Program

• Advanced electronic signature
• Certificate authority
• Certificate signing request
• Code signing
• Cryptography
• Digital Signature
• Domain-validated certificate
• eIDAS
• Electronic signature
• Email encryption
• Extended Validation Certificate
• HTTPS
• Organization Validation Certificate
• Provable security
• Public key certificate
• Public key infrastructure
• Qualified electronic signature
• Root certificate
• S/MIME
• Secure Sockets Layer
• Self-signed certificate
• Transport Layer Security
• Web of trust
• x.509

{{Reflist}}

Category:Certificate authorities

Category:Internet of things

Category:Internet security