Download as PDF
Article
Jisc’s Certificate Service is due for re-procurement in 2021 and as part of this process we want to get your views.
We are inviting those who use the service to take part in a workshop on Tuesday 24th September at Jisc’s offices in London. During the day we will be asking for your feedback on the existing service and provide you with the opportunity to discuss any additional functionality that would enhance the service.
The workshop will start at 10:30 and finish at 15:00 – lunch will be provided.
Article
The use of underscore characters in dnsNames is not allowed in Internet standards but has historically been treated as a gray area when used in the SAN field of TLS/SSL certificates. Most CAs are disallowing this issuance following discussion in the CA/Browser Forum.
We have previously issued browser-trusted TLS/SSL certificates that include dnsNames with underscore characters in the SAN fields.
Article
WE ENCOURAGE CUSTOMERS TO VALIDATE DOMAINS IN ADVANCE TO AVOID POSSIBLE LENGTHY DELAYS IN PROCESSING CERTIFICATE REQUESTS
Q1) What is the change?
From 1 August, new industry regulation states that Certificate Authorities (CAs) must no longer rely on checking a public WHOIS record to validate domain ownership. Instead, customers requesting a certificate must demonstrate a ‘positive interaction’ to show they have control over/ownership of the domain to be used in a certificate.
Article
Change to Certificate Service – from 1st March 2018
Q1) What is the change in the maximum duration of certificates?
A) The maximum duration will be limited to 2 years, currently this is 3 years.
Q2) What certificates are affected?
A) Only medium assurance Organisation Validated (OV) certificates. High assurance Extended Validation (EV) and Wildcard certificates are already limited to 2 years.
Q3) Who is driving this change?
Article
We're pleased to announce that from today the service can provide end user certificates, which are used for digitally signing and encrypting emails. These are called S/MIME (Secure/Multipurpose Internet Mail Extensions) certificates.
S/MIME are installed on email clients which then enable the end user to send digitally signed emails, giving recipients assurances that the email originated from the sender's account. By signing emails, recipients can also have confidence that the contents of the email has been been altered in transit.
Article
The service changed certificate provider to QuoVadis in 2015, and as part of that transition Jisc is obliged to ensure all organisations that use the Certificate Service comply with and agree to a QuoVadis ‘Sub-LRA Agreement’. We have therefore updated the Certificate Service Terms & Conditions to reflect this.
Article
The following certificates can be obtained through the Jisc Certificate Service's web app, found in the App Centre here:
The service provides Extended Validation (EV) server certificates S/MIME end user for digitally signing emails for high, both of which offer users the highest possible assurance. Business/Organisation Validated (OV) and Wildcard (of OV type) certificates are also available.
-----
All certificates issued are SHA-256.
-----
Article
For all FAQs please click on the header link 'Charging FAQs'
Jisc Certificate Service – charging update 24.04.2013 - 10 new points:
1. Why is the date for charging being moved?
Article
I'm pleased to announce that from the 12 May 2015 the Janet Certificate Service will be providing SSL certificates signed by QuoVadis CA.
Article
Availability of SHA-256 certificates: 14 October 2014
We’re pleased to announce an agreement has been reached between TERENA and Comodo which will enable customers to obtain SHA-256 certificates. This is available with immediate effect and all certificates obtained from the service will be by default SHA-256.
