History
Verisign was founded in 1995 as a spin-off of the RSA Security certification services business. The new company received licenses to key cryptographic patents held by RSA (set to expire in 2000) and a time-limited non-compete agreement. The new company served as a certificate authority (CA) and its initial mission was "providing trust for the Internet and Electronic Commerce through our Digital Authentication services and products". Prior to selling its certificate business to Symantec in 2010, Verisign had more than 3 million certificates in operation for everything from military to financial services and retail applications, making it the largest CA in the world.
In 2000, Verisign acquired Network Solutions for $21billion,[10] which operated the .com, .net and .org TLDs under agreements with the Internet Corporation for Assigned Names and Numbers (ICANN) and the United States Department of Commerce. Those core registry functions formed the basis for Verisign's naming division, which by then had become the company's largest and most significant business unit.[11] In 2002, Verisign was charged with violation of the Securities Exchange Act.[12] Verisign divested the Network Solutions retail (domain name registrar) business in 2003 for $100million, retaining the domain name registry (wholesale) function as its core Internet addressing business.[13]
For the year ended December 31, 2010, Verisign reported revenue of $681 million, up 10% from $616 million in 2009.[14] Verisign operates two businesses, Naming Services, which encompasses the operation of top-level domains and critical Internet infrastructure, and Network Intelligence and Availability (NIA) Services, which encompasses DDoS mitigation, managed DNS and threat intelligence.
On August 9, 2010, Symantec completed its approximately $1.28 billion acquisition of Verisign's authentication business, including the Secure Sockets Layer (SSL) Certificate Services, the Public Key Infrastructure (PKI) Services, the Verisign Trust Services, the Verisign Identity Protection (VIP) Authentication Service, and the majority stake in Verisign Japan. The deal capped a multi-year effort by Verisign to narrow its focus to its core infrastructure and security business units.[15] Following ongoing controversies regarding Symantec's handling of certificate validation, which culminated in Google untrusting Symantec-issued certificates in its Chrome web browser, Symantec sold this unit to DigiCert in 2017 for $950 Million.[16]
On 14 December 2021, the Ministry of Justice, Communication and Foreign Affairs of the Tuvalu Government announced on Facebook that they have selected GoDaddy Registry as the new registry service provider for the domain after Verisign did not participate in the renewal process.[17]
In 2011, Verisign was selected by the General Services Administration (GSA) to operate the registry services for the .gov top-level domain.[18] They continued to operate .gov service until 2023, when Cybersecurity and Infrastructure Security Agency (CISA) chose Cloudflare to replace Verisign as the .gov operator.[19]
Verisign's share price tumbled in early 2014, hastened by the U.S. government's announcement that it would "relinquish oversight of the Internet's domain-naming system to a non-government entity".[20] Ultimately ICANN chose to continue VeriSign's role as the root zone maintainer and the two entered into a new contract in 2016.