- Products
-
Home & Home Office
-
E-Commerce
SSL Certificates - Comodo Elite SSL
- EV SSL Certificate
- EV Multi-Domain Certificate
- Multi-Domain Certificate
- Free 90 Day Certificate
- Content Verification Certificate
- Wildcard Certificate
- UC Certificate
PCI Compliance PC Support Email Security & Messaging Site Seals Endpoint Security E-Commerce Bundle Includes:
EV SSL
PCI Scanning
Trust Marks
Vulnerability Scanning
Purchase Protection
Customer Reviews -
Small to Medium Business
- Large Enterprise
- Partners
- Social Media
Comodo Certificates Impregnable to Black Hat Vulnerabilities
You and your customers can count on Comodo certificates. Neither the "Null Character Attack" nor to the "MD2 Vulnerability" recently revealed at the Black Hat Briefings in Las Vegas can affect Comodo products.
Moxie Marlinspike's "Null Character Attack" tricks a vulnerable certificate authority (CA) into issuing a certificate that includes a \0 character (NULL) within the domain name. This allows the attacker to fool a vulnerable web browser into trusting the certificate for a domain name that the CA did not validate. Unlike ISPCA's, Comodo's CA systems have never been vulnerable to this attack.
Dan Kaminsky's "MD2 vulnerability" warns that pre-image attacks against the MD2 hash algorithm are likely to become possible within months. This would allow an attacker to construct trusted certificates that appear to have been issued by a CA certificate that has an MD2-based digital signature. Comodo have never used the MD2 algorithm, so our CA systems and our customers' certificates will not be affected.
-
Speak with an expert now
USA :
1-888-256-2608International :
1-703-637-9361
Featured Client
