Clubbing Seals


“Seal providers” offer a service which allows website owners to show their customers that their website is secure, and therefore safe to use. […] The website owner can include a seal on his website, which links to the seal provider, and shows the security of the sealed website is A-ok.

Now, does having such a security seal on your website actually mean you can trust what the seal provider is claiming, and that your website is secure, or does it actually introduce new types of vulnerabilities and increase the likelihood of compromise?

No surprise that the answer on the first part of the question is no. Turns out however that these seals can easily be exploited by just anyone.

Clubbing Seals (Blogpost) →
Clubbing Seals (Paper) →

Published by Bramus!

Bramus is a frontend web developer from Belgium, working as a Chrome Developer Relations Engineer at Google. From the moment he discovered view-source at the age of 14 (way back in 1997), he fell in love with the web and has been tinkering with it ever since (more …)

Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.