Google Chrome to block Entrust certificates from November 2024 due to security concerns. Website operators urged to switch CAs to avoid disruption.
  • @QuadratureSurferEnglish
    142 months ago

    In case anyone else is curious:

    Why is Chrome taking action?

    Certification Authorities (CAs) serve a privileged and trusted role on the Internet that underpin encrypted connections between browsers and websites. With this tremendous responsibility comes an expectation of adhering to reasonable and consensus-driven security and compliance expectations, including those defined by the CA/Browser TLS Baseline Requirements.

    Over the past six years, we have observed a pattern of compliance failures, unmet improvement commitments, and the absence of tangible, measurable progress in response to publicly disclosed incident reports. When these factors are considered in aggregate and considered against the inherent risk each publicly-trusted CA poses to the Internet ecosystem, it is our opinion that Chrome’s continued trust in Entrust is no longer justified.

  • @slumberlustEnglish
    81 month ago

    Private Equity firm bought them out a while ago and they fucked around. Now it’s the find out phase.