Why “ACME Support” Is Not All the Same – How KeyTalk Makes the Difference
Read how Keytalk provides End-to-end support for both ACME client and ACME server via the KeyTalk PKI Platform solution.
Windows 10 end of support (EOS) and implications for KeyTalk customers
Windows 10 end of support (EOS) and implications for KeyTalk customers. Read here what it means if your infrastructure uses MS Windows 10 OS.
Client Authentication EKU Phased Out
This blogpost addresses the upcoming changes regarding the removal of Client Authentication Extended Key Usage (EKU) from publicly trusted SSL/TLS certificates, a shift driven by security concerns and the need for clearer roles in cryptographic operations.
Upcoming SMIME Baseline Requirements – Update What You Need to Know
A significant update to the S/MIME Baseline Requirements will take effect on July 16, 2025. This update impacts all organizations that use public Certification Authorities (CAs) to issue S/MIME certificates for secure email.
Simplifying Certificate Management with ACME and KeyTalk’s Automation Technology
Explore our in-depth overview to see how ACME and KeyTalk CKMS work together seamlessly—delivering a complete, future-ready certificate automation solution.
MPIC – What is it and why should you care?
What is MPIC and why do you need it? Be protected against network vulnerabilities such as BGP or DNS hijacking. Read more in this blogpost.
Breaking News: Prepare for 47-Day SSL/TLS Certificates
The CA/Browser Forum Ballot for drastically reducing the maximum lifespan of publicly trusted SSL/TLS certificates has officially passed. Read in this blog post what actions you need to take to ensure you are prepared for this.
DNS CAA S/MIME Resource Check 2025 Required
Starting March 13, 2025 CA’s such as DigiCert will start checking CAA resource records before issuing a Secure Email (S/MIME) certificate with a mailbox address. Read how to check and why this CAA S/MIME resource check is needed.
Shortnening Lifespan of TLS Certificates: Preparing for a Future of Shorter Validity Periods
Shortening lifespan of TLS certificates represents both a security improvement and an operational challenge. The key takeaway is that automation is no longer optional—it’s an essential component of modern certificate management.
Email domain validation change policy by CA/B Forum
The CA/B forum has announced a major change to the annual validation of domain names via email. This will impact organizations that purchase certificates from DigiCert and GlobalSign. Read more about the change here.