|Welcome Guest! Login|
Root upgrade for SSL Certificates Thawte
Recently, on June 27, 2010, Thawte has upgraded the root. The SSL123 and Web Server SSL Certificates have been given an upgrade of a 1024-bit to 2048-bit root. All SSL Certificates enrolled from now on will chain up to this root. This upgrade will not affect existing certificates, but will be transferred to the new root with a replacement or renewal.
The root change was needed to ensure the highest level of security. The bit change is an industry wide initiative and is supported by the US National Institute of Standards and Technology (NIST) and Microsoft. The upgrade of Thawte Code Signing Certificates is deferred to later this year.
To have a properly functioning SSL Certificate, you should also install the intermediate certificate, called Thawte DV SSL CA. If you don't, you take the risk that the certificate will give an error. If Thawte users have installed the intermediate certificate correctly, no further action is needed. Current certificates remain fully functional until you renew or replace your certificate. To check whether the certificate is correctly installed, please visit our Site Check or install the Site Seal, which will do a check as well.
In case you don't want to wait till the expiration date of your certificate and you wish to replace your current certificate, simply initiate a standard replacement procedure and your certificate will chain up to the new root. Log in to the Control Panel, go to SSL Certificates and click on the Replacement icon next to the certificate. Follow the instructions on the screen.
VeriSign already has upgraded the root. In the coming months GeoTrust and RapidSSL will follow.
You'll receive the new intermediate certificates with each application, renewal or replacement of the SSL Certificate (included in the zip file). Do you have any questions regarding this notification, please contact our support department at firstname.lastname@example.org or call +31 (0)20-7881030.