GeoTrust is a

digital certificate In cryptography, a public key certificate, also known as a digital certificate or identity certificate, is an electronic document used to prove the validity of a public key. The certificate includes the public key and information about it, informa ...

provider. The GeoTrust brand was bought by Symantec from

Verisign Verisign, Inc. is an American company based in Reston, Virginia, that operates a diverse array of network infrastructure, including two of the Internet's thirteen root nameservers, the authoritative registry for the , , and generic top-level d ...

in 2010, but agreed to sell the certificate business (including GeoTrust) in August 2017 to

private equity Private equity (PE) is stock in a private company that does not offer stock to the general public; instead it is offered to specialized investment funds and limited partnerships that take an active role in the management and structuring of the co ...

and

growth capital Growth capital (also called expansion capital and growth equity) is a type of private equity investment, usually a minority interest, in relatively mature companies that are looking for capital to expand or restructure operations, enter new markets ...

firm Thoma Bravo LLC. GeoTrust was the first

certificate authority In cryptography, a certificate authority or certification authority (CA) is an entity that stores, signs, and issues digital certificates. A digital certificate certifies the ownership of a public key by the named subject of the certificate. Thi ...

to use the

domain-validated certificate A domain validated certificate (DV) is an X.509 public key certificate typically used for Transport Layer Security (TLS) where the domain name of the applicant is validated by proving some control over a DNS domain. Domain validated certificates ...

method which accounts for 70 percent of all SSL certificates on the Internet. By 2006, GeoTrust was the 2nd largest certificate authority in the world with 26.7 percent market share according to independent survey company

Netcraft Netcraft is an Internet services company based in London, England. The company provides cybercrime disruption services across a range of industries. History Netcraft was founded by Mike Prettejohn in Bath, Somerset. The company provides web s ...

History

GeoTrust was the first

to use the

method which is now widely accepted and used by all certificate authorities including

Let's Encrypt Let's Encrypt is a Non-profit organisation, non-profit certificate authority run by Internet Security Research Group (ISRG) that provides X.509 public key certificate, certificates for Transport Layer Security (TLS) encryption at no charge. It is ...

. GeoTrust was a restarted company in 2001 that acquired the security business of

Equifax Equifax Inc. is an American multinational consumer credit reporting agency headquartered in Atlanta, Atlanta, Georgia and is one of the three largest consumer credit reporting agency, consumer credit reporting agencies, along with Experian and T ...

. The Equifax business was the basis of its fast growth. The founders of the restarted company were

CEO A chief executive officer (CEO), also known as a chief executive or managing director, is the top-ranking corporate officer charged with the management of an organization, usually a company or a nonprofit organization. CEOs find roles in variou ...

Neal Creighton, CTO Chris Bailey and Principal Engineer Kefeng Chen. Having no previous fund raising experience Creighton, Bailey and Chen used an existing company as the vehicle to acquire the business they had started at Equifax. The buyout of the Equifax certificate business was inexpensive given the final exit price in 2006.

VeriSign Verisign, Inc. is an American company based in Reston, Virginia, that operates a diverse array of network infrastructure, including two of the Internet's thirteen root nameservers, the authoritative registry for the , , and generic top-level d ...

acquired GeoTrust on 5 September 2006 for $125 million. The main investor was St. Paul Venture Capital/VesBridge. ACG/ Mass High tech named VeriSign's acquisition of GeoTrust as the sell side deal of the year for 2006. Symantec acquired the GeoTrust brand in 2010 as part of its $1.28 billion acquisition of

security business. Symantec announced the sale of its entire certificate business in August 2017 to Thoma Bravo LLC for $1 billion with the intention of merging it with

DigiCert DigiCert, Inc. is a digital security company headquartered in Lehi, Utah. DigiCert provides public key infrastructure (PKI) and validation required for issuing Public key certificate, digital certificates or Transport Layer Security, TLS/SSL cert ...

. Thoma Bravo merged GeoTrust into DigiCert and GeoTrust is now owned by DigiCert.

Root Certificate Untrust

Following a dispute with

Google Google LLC (, ) is an American multinational corporation and technology company focusing on online advertising, search engine technology, cloud computing, computer software, quantum computing, e-commerce, consumer electronics, and artificial ...

the GeoTrust Root Certificate became untrusted. *On July 27, 2017, Google posted a plan regarding Symantec-issued (GeoTrust) TLS server certificates wit
Intent to Deprecate and Remove
**December 1, 2017; all GeoTrust certificates must be issued from a new PKI infrastructure in order for such certificates to be trusted in Google Chrome. **On March 15, 2018; Google Chrome will show a warning for sites secured with SSL/TLS certificates issued before June 1, 2016. **On September 13, 2018; Google Chrome will show a warning for sites secured with SSL/TLS certificates issued by Symantec’s existing PKI infrastructure. Beginning 1st December 2017 GeoTrust has been issuing all Certificates under the DigiCert Trusted Root TLS Certificate.

References

External links

* {{Official website, https://www.geotrust.com/ Former certificate authorities Companies established in 2001