DigiNotar certificate authority goes bankrupt

20.09.2011

The sentiment was backed up by company COO Jan Valcke. "We want to emphasize that the bankruptcy filing by DigiNotar, which was primarily a certificate authority, does not involve VASCO's core two-factor authentication business," he says. "While we do not plan to re-enter the certificate authority business in the near future, we expect that we will be able to integrate the PKI/identity verification technology acquired from DigiNotar into our core authentication platform. As a result, we expect to be able to offer a stronger authentication product line in the coming year to our traditional customers."

The attacker cracked into DigiNotar's network and issued false certificates that could be used to verify the authenticity of phony sites that appeared to be run by the CIA, MI6, Mossad, Microsoft, Yahoo, Skype, Facebook, and Microsoft's Update service.

In addition to delaying public notification of the breaches and acknowledging some of the stolen certificates, DigiNotar followed up by announcing it had overlooking hundreds of other stolen certificates.

Meanwhile, Vasco still has no idea how much financial damage the hacker wrought on DigiNotar. "We are working to quantify the damages caused by the hacker's intrusion into DigiNotar's system and will provide an estimate of the range of losses as soon as possible, " Cliff Bown, Vasco's executive vice president and CFO, says in a written statement.

in Network World's Wide Area Network section.