Google Chrome will disable certificates issued by the Spanish certificate authority Camerfirma in April
Due to misconduct in the issuance and management of the certificate and does not meet industry operating standards, Mozilla has launched an investigation into the certification authority Camerfirma.
According to the investigation by Mozilla, this Spanish certification authority has many problems, including but not limited to illegal operations, improper verification, and data errors.
For example, the latest issue discovered by the agency is that certain certificates are not compliant with CP/CPS. The agency has been found to have a variety of errors and violations since 2017.
According to the survey, Google Chrome decided to take the first action, Google has announced that Google Chrome will no longer trust any certificates issued by Camerfirma from April this year.
Under normal circumstances, if the website protects the encrypted connection with a digital certificate, the browser will not report an error. If the encrypted connection is not used, the browser will display a warning.
This warning is limited to the gray exclamation mark on the left side of the address bar to remind users, but users who enter account information on these websites will pop up with strong warnings.
In view of the various violations of Camerfirma, Google Chrome will ignore its certificates, that is, treat these encrypted connection sites as plaintext sites.
If the user tries to access these websites, a warning that it is not a secure connection will pop up directly. At this time, the user can only continue to visit the website after clicking the advanced option.
This step may cause most users to give up access directly, so if the website uses Camerfirma’s certificate, you should immediately start replacing it with a new certificate.
Google hopes to use this method to put pressure on the Spanish issuing agency, unless it can completely resolve a series of non-compliance issues, Google will not restore trust.
Via: ZDNet