DigiCert QuoVadis

Contact Us

For more information, please contact us at:
+31 (0) 30 2324320

News and Events

QuoVadis to Implement Baseline Requirements for SSL/TLS
16 Dec 2011

QuoVadis is among the first Certification Authorities to adopt the new “Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates” standard published by the CA/Browser Forum.

QuoVadis is a longstanding member of the CA/Browser Forum and contributed to the development of the new Baseline Requirements, which consolidate many previously fragmented standards and best practices for the issuance and management of SSL/TLS digital certificates.

“Previously Certification Authorities had to interpret overlapping standards from different software providers, regulators, and audit regimes,” said Roman Brunner, CEO of QuoVadis. “With the Baseline Requirements the core standards are integrated in one document, clarifying responsibilities and increasing accountability for trusted CAs that issue SSL/TLS digital certificates.”

SSL/TLS certificates are an essential part of the Internet’s security infrastructure, used to authenticate the ownership of websites and other online resources, as well as to encrypt information for confidentiality.

“Over time SSL/TLS has evolved with the growing sophistication of Internet, implemented in a wide array of software and the proven capability to scale to handle many millions of users. By establishing a security benchmark for CAs around the world, the ongoing Baseline Requirements initiative will benefit all users of SSL certificates and the https security they provide,” continued Mr. Brunner.

The Baseline Requirements provide clear standards for CAs on important subjects including CA security, verification of identity, a range of technical issues related to certificate content and technical structure, audit requirements, liability issues, and delegation of roles including the use of external sub-CAs and registration authorities.

QuoVadis, along with other major CAs that have chosen to voluntarily adopt the standard, will implement the Baseline Requirements before the effective date of July 1, 2012.

The CA/Browser Forum has requested that internet browsers and operating systems adopt the Baseline Requirements among their conditions to pre-distribute CA root certificates in their software. The CA/B Forum has also requested that the major audit regimes used by CAs, WebTrust and ETSI, develop audit criteria to assess compliance with the Baseline Requirements.

Founded in 1999, QuoVadis is a leading international Certification Authority, issuing both Organisation Validation and Extended Validation SSL certificates as well as digital certificates for End Users. QuoVadis is accredited as a Qualified Certification Services Provider (CSP) in several countries, and an issuer of Swiss SuisseID and Dutch PKIoverheid certificates. QuoVadis is audited to the WebTrust/CA and WebTrust/EV standards as well as the ETSI qualified standards.