Recently, we reviewed a document of best practices in deploying SSL Certificates published by Qualys, a prominent security company. Their document had some very good advice. In particular, we agree whole heartedly with their recommendation that an SSL user should “obtain certificates from a reliable Certificate Authority”.
They went on to list criteria that you should use in determining if a CA should be considered reliable. We decided to evaluate ourselves to see how we stack up based on their standards. Not only do we pass the test, you might think that they had Comodo in mind when they defined the criteria!