UITS Purchases InCommon Certificate Service

ITS has procured an InCommon Certificate Service for the University in response to the recent Heartbleed exploit in the OpenSSL cryptographic software library. This service allows us to generate, for all UConn Domains, an unlimited number of certificates (e.g., SSL, extended validation, client, and code signing) that are validated by a trusted Certificate Authority.

Technical staff across the Institution aggressively responded to the recent Heartbleed exploit and updated University servers. Heartbleed attacked an OpenSSL vulnerability in order to obtain private data. It is possible that some certificates were compromised and it would be wise to replace any that might have been exposed. You may replace your certificates at no departmental cost by using the ITS fully subsidized InCommon Certificate Service.

Additional information on the new service can be found at https://draft.its2023.uconn.edu/ssl-certificate-service/.