27 June 2018 at 10:29am
WE ENCOURAGE CUSTOMERS TO VALIDATE DOMAINS IN ADVANCE TO AVOID POSSIBLE LENGTHY DELAYS IN PROCESSING CERTIFICATE REQUESTS Q1) What is the change? From 1 August, new industry regulation states that Certificate Authorities (CAs) must no longer rely on checking a public WHOIS record to validate domain ownership. Instead, customers requesting a certificate must demonstrate a ‘positive interaction’ to show they have control over/ownership of the domain to be used in a certificate.
13 February 2018 at 2:34pm
We're pleased to announce that from today the service can provide end user certificates, which are used for digitally signing and encrypting emails. These are called S/MIME (Secure/Multipurpose Internet Mail Extensions) certificates. S/MIME are installed on email clients which then enable the end user to send digitally signed emails, giving recipients assurances that the email originated from the sender's account. By signing emails, recipients can also have confidence that the contents of the email has been been altered in transit.
24 January 2017 at 2:07pm
The service changed certificate provider to QuoVadis in 2015, and as part of that transition Jisc is obliged to ensure all organisations that use the Certificate Service comply with and agree to a QuoVadis ‘Sub-LRA Agreement’. We have therefore updated the Certificate Service Terms & Conditions to reflect this.
27 July 2015 at 4:18pm
Recent news has nicely coincided with my drafting of an encryption policy as part of our Information Security Management System. “Logjam” joins a growing number of vulnerabilities in cryptosystems such as Heartbleed, BEAST and POODLE.
14 October 2014 at 12:13pm
Availability of SHA-256 certificates: 14 October 2014We’re pleased to announce an agreement has been reached between TERENA and Comodo which will enable customers to obtain SHA-256 certificates. This is available with immediate effect and all certificates obtained from the service will be by default SHA-256.
8 February 2016 at 2:05pm
To apply for membership of the Jisc Certificate Service, please download, complete and sign the application form. It must be signed by someone with the appropriate level of authority to sign on behalf of your organisation. The completed form can be scanned and emailed (to certificates@jisc.ac.uk), faxed (0300 300 2213) or posted back to Jisc, Lumen House, Library Avenue, Harwell Campus, Didcot, OX11 0SG
24 January 2017 - S/MIME certificates for digitally signed emails
Jisc Certificate Service Jisc is able to provide subscribers of the Certificate Service with a range of server and S/MIME email certificates issued by QuoVadis CA. ----- All certificates issued are SHA-256. ----- 1. QuoVadis Extended Validation (EV) SSL certificate - recommended by Jisc for high profile web services
PB/INFO/003 (06/06) It is relatively easy to create an electronic mail message that appears, superficially at least, to come from someone else. It is therefore useful to be able to ‘sign’ e-mails, as we use ink signatures on paper documents and letters, to give stronger proof of their origin. There are systems that allow such signatures to be created using certificates and certification agencies, however the most commonly used system, Pretty Good Privacy (PGP), uses a different approach and terminology.
Subscribe to certificates