Verisign History
Verisign's Origin
Verisign’s founding mission in 1995 was to provide critical Public-Key Infrastructure (PKI) products and services to the large base of technology partners of RSA Data Security, the company that pioneered public-key cryptography. But these services began years before, inside of RSA. Beginning in the mid-1980s, RSA began forming strategic partnerships with technology industry leaders, which, by 1991, included Lotus, Microsoft, Apple, Sun, DEC, Novell, and many others. RSA’s software security modules were integrated by these partners, which included the full suite of PKI technology and ensured broad-based interoperability.
RSA Data Security was founded by three MIT professors — Ron Rivest, Adi Shamir, and Leonard Adleman — who invented the RSA algorithm, which would become the most widely used public-key cryptosystem in the world. Current Verisign CEO Jim Bidzos was CEO of RSA Data Security in 1986, and led the effort to begin providing PKI-based products and services. That year, RSA began launching toolkits and incubating what would become Verisign, offering public key certificate services. As RSA’s many strategic partners began to deploy products in the 1990s, the need for these services grew.
In 1994, Netscape partnered with RSA to fully integrate RSA’s full suite of PKI software into the very first version of their browser, Netscape Navigator. Verisign was spun out in April 1995 to be an independent, transparent company focused on PKI certificate services — issuance, identity verification, and revocation — at global scale. The closing padlock, along with the Verisign checkmark logo, became iconic in the 1990s, providing visual confirmation to millions of Netscape Navigator users that two parties with no prior relationship — a user with a browser and a merchant with an e-commerce website — could establish trust and exchange payment and other information via PKI-enabled secure socket layer (SSL) technology. Microsoft followed quickly in 1995 with Internet Explorer, using the same RSA technology, ensuring both browsers would support the security features. The era of secure e-commerce at global scale began and experienced exponential growth.
In 2000, Verisign acquired Network Solutions, which focused exclusively on the operation of critical Domain Name System (DNS) infrastructure. The exponential growth in demand for and dependencies on the DNS in the years that followed — along with the assumption of needed expansion of critical Internet infrastructure, all while the cyberthreat landscape grew and evolved — led Verisign to focus on its infrastructure services mission and the security of those services, divesting businesses that were not core to that focus. In that process, Verisign’s pioneering history in cybersecurity proved to be a critical contributor to maintaining an unparalleled record of security, stability, and reliability.
The relationship between Verisign and Network Solutions began indirectly in 1997, when RSA Data Security announced free-use software to secure the DNS and related components. In the years following the acquisition, the combined technical teams continued to make numerous innovations related to security, stability, and resiliency. More recently, Verisign has developed important innovations in post-quantum cryptography for use in Domain Name System Security Extensions (DNSSEC), proposed for standardization and free use for efficient use of quantum-resistant cryptography that can operate with the efficiency and security required by today’s DNS.
Today, Verisign includes many original members of RSA and Network Solutions teams, integrating a rich foundation of experience across cryptography, digital certificate security, and the DNS. This foundation of knowledge and expertise enables the company to foresee and respond to the internet’s ever-evolving global commercial and security landscape.
Verisign Timeline
Nine years prior to Verisign’s founding, RSA Data Security began developing and launching public-key infrastructure end-user products and toolkits for integration into mainstream end-user products, while beginning to incubate the technologies and services that would become Verisign.
RSA Data Security begins work on Public-Key Cryptography Standards (PKCS) — the standards that will enable broad inter-operable security and continue to do so over 35 years later.
RSA Data Security partners with Netscape to seamlessly integrate RSA’s full suite of PKI software into the very first version of the Netscape Navigator browser.
RSA’s trust services are spun out as Verisign by Jim Bidzos with investors including VISA, Intel, Mitsubishi, and Ameritech, among others, to serve the growing number of RSA-enabled product communities as an independent and focused global provider of PKI-based digital identity trust services.
Microsoft’s Internet Explorer adopts the RSA/Verisign technology, ensuring interoperability across the two most widely used internet browsers and commerce servers; the closing padlock along with the Verisign checkmark become global symbols of online trust and security.
Verisign’s initial engagement with Network Solutions begins indirectly, when RSA Data Security announces free-use software to secure the DNS and related infrastructure components.
Verisign holds an initial public offering and is listed on the Nasdaq Stock Market as VRSN.
Verisign acquires Network Solutions and becomes the registry for the .com and .net top-level domains (TLDs).
Verisign publishes the first proposals that describe the Extensible Provisioning Protocol (EPP), a protocol for registry-registrar information exchange in shared registration systems.
Verisign begins to develop the Advanced Transaction Look-up and Signaling System (ATLAS®) with the goal of it becoming Verisign’s primary DNS resolution platform, strengthening management capabilities and enabling dynamic growth of data at scale.
The .com and .net registries support IPv6 AAAA resource records for the first time.
The .com and .net name servers, operated by Verisign, begin answering IPv6 transactions for the first time.
DNSSEC, co-authored by Verisign, becomes a Proposed Internet Standard.
IPv6 AAAA resource records enter the root zone for the first time.
EPP becomes a Full Internet Standard.
Verisign divests itself of its Authentication Services business, focusing on two core businesses, Domain Name Services and Security Services.
With the Internet Corporation for Assigned Names and Numbers (ICANN), Verisign deploys DNSSEC to the root zone as well as the .net and .edu TLDs to increase the security of the DNS.
The combined .com and .net zones surpass 100 million domain name registrations.
Verisign moves its corporate headquarters from Mountain View, CA to Northern Virginia.
Verisign deploys DNSSEC to the .com TLD.
Verisign launches Verisign Labs to develop technologies that make the internet more stable, secure, and resilient.
Verisign announces participation in ICANN's new generic top-level domain (gTLD) program.
Verisign begins participating in the process to develop the Registration Data Access Protocol (RDAP), a replacement for Whois which provides registration data for domain names.
Verisign announces royalty-free license to its query name (qname) minimization intellectual property rights. Invented by Verisign and now widely used across the globe, this technology increases the privacy of DNS transactions.
Verisign celebrates the 30th anniversary of the first .com domain name.
Verisign launches the first of its internationalized TLDs, .コム.
RDAP, co-authored by Verisign, becomes a Proposed Internet Standard.
The Internet Assigned Numbers Authority’s (IANA) functions for root zone management are transitioned from the U.S. National Telecommunications and Information Administration (NTIA) to ICANN.
Under an agreement with ICANN, Verisign becomes the Root Zone Maintainer, supporting a core element of the global DNS, formalizing a role Verisign had long performed.
Verisign collaborates with IANA and NTIA to double the size of the DNSSEC zone-signing key for the root zone to 2048-bit RSA.
Verisign launches NameStudio®, a smart API-based domain name suggestion solution to help businesses and individuals research available domain names.
The first rollover of the
root zone's key signing key — the widely deployed trust anchor for DNSSEC — is completed.
Verisign transitions its Verisign Security Services business to another provider, focuses entirely on the stewardship of critical internet infrastructure.
The combined .com and .net zones surpass 150 million domain name registrations.
RDAP is deployed to Verisign-managed TLDs.
Verisign begins a “trusted notifier” relationship with the Internet Watch Foundation to combat online child sexual abuse material.
Verisign begins a “trusted notifier” pilot program with the NTIA and the U.S. Food and Drug Administration to curb access to illegal opioids online.
In response to the COVID-19 pandemic, Verisign launches a wide-ranging plan to support its industry, communities, and employees through charitable donations, active support for re-skilling programs, and leadership in deploying a next-generation work model.
RDAP, co-authored by Verisign, becomes an Internet Standard, giving relying parties a new, more flexible way to look up registration data in supporting TLDs, which include .com and .net.
Verisign celebrates 25 years of stable, uninterrupted DNS availability for .com and .net.
Verisign offers an open-source implementation of Merkle Tree Ladder mode, intended to help protect the DNS even in the post-quantum computing era, when exponentially increasing computing power will render existing algorithms ineffective.