SSL Certificate Update

On January 20th, 2016, ProtonMail will be updating the SSL certificate for protonmail.com.

With this update, we will also be changing our Certificate Authority to QuoVadis Trustlink Schweiz AG. Along with the change in SSL certificate, we will also be moving the ProtonMail secure email service to a dedicated subdomain, mail.protonmail.com. We have also released ProtonMail 3.0 into beta. To learn more, please read our announcement post.

These changes will be completely transparent to the user. It will still be possible to log in from our homepage which will stay at protonmail.com. The new SSL certificate will be automatically accepted by your browser. ProtonMail 3.0 will also be automatically loaded by your browser on page refresh. If you have bookmarks like protonmail.com/login, then you may wish to update them to mail.protonmail.com/login.

These changes are part of our continued efforts to improve security sitewide in advance of the major ProtonMail releases that will be coming soon, starting at the end of this month. Moving the webapp to its own subdomain will help to improve security by isolating the webmail from other services and is the first step of our bigger 2016 secure email roadmap.

We are happy to bring on QuoVadis Trustlink Schweiz AG as another partner in helping us provide the world’s most secure email service. After much evaluation, our team determined that QuoVadis is the best Swiss Certificate Authority (CA) for high security applications. Like ProtonMail, QuoVadis Schweiz is a security company, and one of the approved issuers for SuisseID, the Swiss voluntary national e-ID program. They are a government qualified CSP in Switzerland, and an accredited CSP in the Netherlands and Belgium (with EU-wide capabilities). Lastly, they provide the responsive service that is absolutely necessary in the security space where response time is vital.

With QuoVadis, we are able to bring a highly sophisticated SSL certificate to benefit one million ProtonMail users. Advanced features of our new certificate include Extended Validation (EV), 4096-bit RSA, SHA-256 hash, and Certificate Transparency (CT). Together with QuoVadis, we will continue to stay on the cutting edge of SSL certificate technology to ensure the highest level of security for ProtonMail users.

In our discussions with QuoVadis, we discovered that some of them are also ProtonMail users and want to support us in protecting email communications. Given that many ProtonMail users are also businesses with high security needs, we have negotiated a 10% discount for all ProtonMail users who are interested in acquiring certificates from QuoVadis. Simply write to sales.ch@quovadisglobal.com from your ProtonMail account and mention the code *QVProtonPartner* to get the ProtonMail rate.

Best Regards,
The ProtonMail Team

You can find ProtonMail’s new SHA-256 and SHA1 below:

Secure Email ProtonMail's SHA Fingerprints

About the Author

Admin

We are scientists, engineers, and developers drawn together by a shared vision of protecting civil liberties online. Ensuring online privacy and security are core values for the ProtonMail team, and we strive daily to protect your rights online.

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

14 comments on “SSL Certificate Update

    • Great email service – but I believe that SSL has been cracked since 1994 – and TLS is the preferred encryption.

      Reply
  • Never heard of QuoVadis before. Did a quick read-up on them and of what I have seen so far I’m impressed.

    Welcome QuoVadis as partner and hopefully this will be a long lasting partnership.

    Reply
  • Protonmail has Proven to Be a State of the Art Professionally Run Organization.
    The Support Always Goes Beyond Your Expextations.
    I Am So Lucky To Be a Part of the Proton Family.
    All The Best and My Personal Thanks to the Entire Team For Leading the Field in Encriped Email.
    Thanks From Your Texas Connection,
    Capt. Nichols.

    Reply
    • Who knows …
      I always like to confuse people by switching .ch and .com :). But I thought that .com means company, or am I wrong ?

      However, very good job so far. Thanks for this great service @ProtonMail

      Reply
    • There’s an option to change the from, with a choice either of .com and .ch
      I just checked and that option is still there. Go to Settings, Aliases

      Reply
  • I really appreciate your innovative, private e-mail service! That said, I am not a tech oriented person and would prefer as little change as necessary while keeping privacy intact. So glad I found you on Indiegogo!

    Reply
    • Would recommend everybody to install Certificate Patrol, to let you know about any change in certificates. I was worried when noticed that Protonmail certificate has changed (due to Certificate Patrol) but then i found this blog and was happy 🙂

      Reply