VeriSign Sells Authentication Business to Symantec for $1.3bn

Barely a day after the rumours started to fly, Symantec confirms plans to buy VeriSign’s identity and authentication security business

Twenty-four hours after acquisition rumours hit the press, Symantec announced it has signed a definitive agreement to buy VeriSign’s identity and authentication business.

Symantec will pay $1.28 billion (£888 million), and will acquire VeriSign Trust Services along with VeriSign’s Secure Sockets Layer (SSL) certificate services, public-key infrastructure (PKI) services and the VeriSign Identity Protection (VIP) authentication service.

According to Symantec, the acquisition will ultimately “help businesses incorporate identity security into a comprehensive framework…and securely adopt new computing models,” including cloud computing and mobile computing.

“With the anonymity of the internet and the evolving threat landscape, people and organisations are struggling to maintain confidence in the security of their interactions, information and identities online,” Enrique Salem, Symantec chief executive, said in a statement. “At the same time, people’s personal and professional lives have converged and they want to use their various digital devices to access information wherever they are without jeopardising their privacy… We believe the solution to this dilemma lies in the ubiquity of identity-based security.”

To that end, Symantec said it plans to combine VeriSign’s SSL Certificate Services with Symantec Critical System Protection or Protection Suite for Servers to “help organisations ensure a higher level of security on their web servers”.

In addition, Symantec said it would use VeriSign VIP to complement the Identity Safe technology in Norton products and position VeriSign’s SSL business to “become the leading source of trust online”.

VeriSign sold its managed security services business to SecureWorks and its security consulting business to AT&T in 2009. The sell-off was part of a move by VeriSign to focus on its internet registry business.

The deal with Symantec is expected to close later in 2010.