DigiNotar certificate authority goes bankrupt

20.09.2011
The theft of SSL certificates from Dutch certificate authority DigiNotar so undermined trust in the company that it has gone bankrupt.

Responsible for taking down the company is a single attacker, believed to be in Iran, who used to authenticate sites that make secure connections via SSL. DigiNotar was the primary certificate authority used by the Dutch government.

DigiNotar filed for bankruptcy yesterday and a Dutch court approved the filing today. Trustees were appointed to liquidate its assets, according to a statement by DigiNotar's parent company, Vasco.

MORE ON SECURITY CERTIFICATES:

The industry has been running from DigiNotar since the breach was made public Aug. 29, more than two months after the company discovered an attack. all DigiNotar digital certificates, deeming them untrusted. Google and Mozilla had already blacklisted the company's certificates, and the TOR project has recommended rejecting all DigiNotar certificates.

The parent company Vasco can be added to the list of firms distancing themselves from DigiNotar. "We would like to remind our customers and investors that the incident at DigiNotar has no impact on VASCO's core authentication technology," says T. Kendall Hunt, Vasco's chairman and CEO, in a written statement. "The technological infrastructures of VASCO and DigiNotar remain completely separated, meaning that there is no risk for infection of VASCO's strong authentication business."