New Offering Allows Software Developers to Easily Incorporate Suite B Enabled SSL Support for Stronger Security

MISSISSAUGA, Ontario – (Oct. 27, 2008) – Certicom (TSX: CIC) today announced new support for Suite B algorithms in Security Builder® SSL™ (Secure Sockets Layer) for both C and Java languages.  Security Builder SSL will enable developers targeting government, aerospace, financial, and other industries to quickly and easily incorporate Suite B enabled SSL support into their products.

Suite B is the set of cryptographic algorithms recommended by the National Security Agency (NSA) to secure classified and unclassified communications.  In 2005, the NSA recommended Elliptic Curve Cryptography (ECC) as the public key crypto system to protect such communications.  The Suite B recommendations are part of an initiative to upgrade the security infrastructure of government communications to meet present and future security needs.  ECC is used in a growing number of sectors including government and enterprise applications.

Certicom’s Security Builder SSL for C and Java offers comprehensive crypto support for developers who are building highly secure SSL products for financial, government, networking and mobile device markets today.

In addition to supporting Suite B, ECC, Transport Layer Security (TLS) 1.2 and Galois/Counter Mode (GCM) Cipher cryptography, Certicom’s Security Builder SSL for C and Java solutions support FIPS 140-2 crypto.  FIPS 140-2 is the security requirement for cryptographic modules as defined by the National Institute of Standards for Technology (NIST).  The standard is required for sale of products implementing cryptography to the Federal Government.   

“Certicom's SSL security technology is used by leading companies in the financial, government, networking and mobile device markets, and today is deployed in millions of devices around the world,” said Jim Alfred, director, Product Management, Certicom.  “With this new offering, we are further expanding the capabilities offered by Security Builder SSL to fulfill our customers’ security needs.  This additional support will make it easier than ever for developers and network administrators to attain Suite B compliance for their products.”

Security Builder SSL offers an easy-to-use application programming interface (API), support for more than 30 platforms and is optimized for a variety of environments including resource constrained devices and wireless applications.  

About Certicom
Certicom manages and protects the value of content, applications and devices with government-approved security. Adopted by the National Security Agency (NSA) for government communications, Elliptic Curve Cryptography (ECC) provides the most security per bit of any known public-key scheme. As the global leader in ECC, Certicom’s security offerings are currently licensed to hundreds of multinational technology companies, including IBM, General Dynamics, Motorola, Oracle and Research In Motion. Founded in 1985, Certicom’s corporate offices are in Mississauga, Ontario, Canada with worldwide sales and marketing headquarters in Reston, Virginia and offices in Europe and Asia. Visit www.certicom.com.

Certicom Safe Harbor Statement
Except for historical information contained herein, this news release contains forward-looking statements that involve risks and uncertainties. Forward-looking information includes information concerning Certicom's future financial performance, business strategy, plans, goals and objectives. When used in such documents, the words "plans", "expects", "budget", "scheduled", "estimates", "forecasts", "intends", "anticipates", "will", "believes" or variations of such words and phrases often, but not always, identify forward looking statements. Factors which could cause actual results or events to differ materially from current expectations include, among other things: the ability of Certicom to successfully implement its strategic initiatives and whether such strategic initiatives will yield the expected benefits; the ability of Certicom to develop, promote and protect its proprietary technology security breaches or defects in Certicom's products; competitive conditions in the businesses in which Certicom participates; changes in consumer spending; the outcome of legal proceedings as they arise; general economic conditions and normal business uncertainty; consolidation in Certicom's industry and by its customers; customer preferences towards product offerings; the risk that customers may cancel their contracts with Certicom; reliance on a limited number of customers; demand for ECC-based technology; performance of Certicom's management team and Certicom's ability to attract and retain skilled employees; operating Certicom's business profitably; fluctuations in revenue and foreign currency exchange rates; interest rate fluctuations and other changes in borrowing costs; the ability to develop and maintain strategic relationships; and other factors identified under the heading "Risk Factors" in Certicom's annual information form dated July 21, 2008 and filed on SEDAR at www.sedar.com.

For further information, please contact:
John Conrad
Merritt Group, Inc.