Google has announced that starting November 1, 2024, Chrome version 127 and higher will no longer trust new TLS server authentication certificates from Entrust and AffirmTrust. The decision comes after a series of compliance failures, unfulfilled improvement commitments, and lack of progress in addressing incident reports over the past six years.

In a blog post published on June 27, Google advised website owners to transition to a new publicly trusted Certification Authority (CA) before the deadline to avoid disruptions in encrypted connections between browsers and websites. Certification Authorities play a crucial role in maintaining security and compliance standards to ensure secure online interactions.

The Chrome Root Program Policy mandates that CA certificates must provide value that exceeds their potential risk to the Internet ecosystem. Google emphasized the importance of upholding these standards and stated that their decision to no longer trust Entrust certificates was based on a thorough evaluation of the risks associated with continued trust in the CA.

After November 1, Chrome users visiting websites with certificates issued by Entrust or AffirmTrust will encounter security warnings, prompting website operators to review their certificates and migrate to a different CA to prevent service interruptions. This change will affect Chrome users on multiple platforms, including Windows, macOS, ChromeOS, Android, and Linux.

The move by Google underscores the significance of CAs in upholding the integrity of the web ecosystem and highlights the need for stringent security measures in online transactions. Tim Callan, Chief Experience Officer at Sectigo, emphasized the importance of CAs maintaining the highest standards to safeguard public trust and prevent potential security risks.

With a shorter life cycle timeline of 90 days and the looming implications of quantum computing, CAs and Certificate Lifecycle Management (CLM) providers are urged to comply with industry regulations and baseline requirements to address evolving cybersecurity challenges. Maintaining a high level of security in online transactions is paramount to protect users and businesses that rely on secure encryption protocols.

In conclusion, the decision by Google to no longer trust TLS server authentication certificates from Entrust and AffirmTrust highlights the critical role of CAs in ensuring secure online interactions. Website owners are advised to take proactive measures to transition to a different CA before the November 1 deadline to avoid service interruptions and maintain secure encrypted connections for users. Staying abreast of industry regulations and advancements in cybersecurity is essential for CAs and CLM providers to uphold public trust and prevent potential security vulnerabilities.

Lidhja e burimit