On January 24, 2026, the CA/Browser Forum approved a ballot to fully sunset the remaining uses of SHA-1 signatures within the public certificate ecosystem. The change targets edge cases that survived long after SHA-1 was deprecated from regular TLS certificates. This is not a reaction to a new cryptographic break. SHA-1 has been considered unsuitable […]
In 2026, the internet is no longer just a utility; it is the cognitive backbone of global commerce. Behind every AI agent, immersive 6G experience, and mission-critical app lies a web host that has evolved far beyond simple file storage. The industry has shifted from selling “space and speed” to providing “intelligence and sovereignty.” With […]
With over 112 million certificates securing the web and 99% of Chrome traffic encrypted, we are living in the age of HTTPS. But what lies behind the padlock? We’ve compiled 12 critical SSL statistics for 2026 to help you navigate this crowded landscape. These insights go beyond simple adoption rates to explore usage patterns, market […]
Every website needs an SSL certificate now, but not all certificates work the same way. If you’re on shared hosting, your provider probably gave you a “free SSL certificate.” The thing is, this shared SSL certificate comes with some serious drawbacks that could hurt your business. This article explains what a shared SSL certificate actually […]
For over three decades, SSL and TLS protocols have protected billions of online transactions. What started as Netscape’s ambitious security project in 1994 evolved into today’s sophisticated encryption standards. This SSL history spans six major protocol versions, countless security improvements, and a fundamental shift in how we think about web security. Understanding SSL/TLS versions isn’t […]
HTTPS is now a default expectation on the web. But while encryption has become the baseline for online security, paying for SSL certificates has not. At SSL Dragon, we know exactly where SSL certificates are actually being bought, and want to give you a unique glimpse into the geographical distribution of paid encryption. In our […]
The Internet’s trust layer has come a long way since certificates lived quietly in the background. Back then, SSL wasn’t something teams tracked often. You bought a certificate, installed it on a server, and moved on. If the site stayed up, trust was assumed. Browsers were forgiving, infrastructure changed slowly, and certificate management felt closer […]
Code-signing certificates will soon get much shorter lifespans. A new industry rule approved on 17 November 2025 cuts their maximum validity from 39 months to 460 days, effective 1 March 2026. The change appears in the updated Code Signing Baseline Requirements v3.10.0.
Three of London’s most high-profile councils were thrown into disruption last week after a cyberattack struck their shared IT systems, knocking critical services offline and forcing an urgent response from national security agencies.
When you order an SSL/TLS certificate, the Certificate Authority won’t just hand it over. They need proof you actually control the domain you’re securing. That’s where Domain Control Validation (DCV) comes in. It’s the verification process that confirms domain ownership before any certificate gets issued. This isn’t just bureaucratic red tape. DCV prevents attackers from […]
