Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Symantec certificates: Chrome's intent to deprecate and remove #1634

Open
ameshkov opened this issue Mar 23, 2017 · 7 comments

Comments

@ameshkov
Copy link
Member

commented Mar 23, 2017

Here are the details:
https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/eUAKwjihhBs/rpxMXjZHCQAJ

We may need to follow their lead.

@ameshkov ameshkov added the security label Mar 23, 2017
@BooBerry

This comment has been minimized.

Copy link

commented Mar 24, 2017

This would invalidate, what, half the internet? Google's playing with fire.

@ameshkov

This comment has been minimized.

Copy link
Member Author

commented Mar 26, 2017

JFYI, Symantec's answer:
https://www.symantec.com/connect/blogs/symantec-backs-its-ca

Let's keep an eye on this drama:)

@ameshkov

This comment has been minimized.

Copy link
Member Author

commented Mar 26, 2017

This would invalidate, what, half the internet? Google's playing with fire.

Not half, just a third part:)

@BooBerry

This comment has been minimized.

Copy link

commented Mar 27, 2017

If I recall correctly, Mozilla's telemetry for Firefox suggested the number of sites was around 42%, which is between 1/3 to 1/2 of all the internet.

It'll be interesting to see how this goes forward, but this has the potential to hurt overall HTTPS adoption.

@ameshkov

This comment has been minimized.

@ameshkov ameshkov added this to the 6.3 milestone Nov 30, 2017
@ameshkov ameshkov added the P2: High label Feb 20, 2018
@adbuker

This comment has been minimized.

Copy link

commented Apr 11, 2018

from https://security.googleblog.com/2018/03/distrust-of-symantec-pki-immediate.html : from version 70 (~October 2018) all the Symantec SSL/TLS certificates will stop working, so we should back to this issue

@adbuker

This comment has been minimized.

Copy link

commented Apr 11, 2018

The first step of the issue's resolution (deprecate "old" certs) in adguard-windows/pull-requests/70

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
3 participants
You can’t perform that action at this time.