Mobile app version of vmapp.org
Login or Join
Welton855

: What to do about certificates being distrusted Recently Google Chrome started issuing a warning on the console which says: The SSL certificate used to load resources from https://www.example.com

@Welton855

Posted in: #Advertising #GoogleChrome #Security

Recently Google Chrome started issuing a warning on the console which says:


The SSL certificate used to load resources from
www.example.com will be distrusted in M70. Once
distrusted, users will be prevented from loading these resources.


Where the URL is the address of a third-party used to display advertising and this includes big names such as Amazon.

It sounds like that people will no longer see these ads at all after M70 which is obviously bad for sites that rely on those advertising platforms. So, first of all:


When is M70?
What will happen exactly at that time?
Is there something webmasters must do or should we expect third-parties to solve it?

10.01% popularity Vote Up Vote Down


Login to follow query

More posts by @Welton855

1 Comments

Sorted by latest first Latest Oldest Best

 

@Nimeshi995

Quick Summary


March 15th 2018: Chrome 66 is released as beta and it will stop trusting Symantec-issued certificates issued prior to June 1, 2016.
April 17th 2018: Chrome 66 will change status from beta to stable release.
September 13th 2018: Chrome 70 is released as beta, which will remove trust in ALL old Symantec-rooted Infrastructure.
Chrome 70 will change status from beta to stable release.


The Google Chrome team advise site operators to reissue their CERTS as from now 1st December but it also states that you may need to do it again when version 70 is released.

Google is also limiting the CA root from Symantec to 13 months limit, so I would recommend that you choose a new vendor.

References Below

I recommend that you read through the page linked below, its long but hopefully will inform you in more ways than I have done so.


SOURCE

Chrome 66 released to beta, which will remove trust in Symantec-issued
certificates with a not-before date prior to June 1, 2016. As of this
date Site Operators must be using either a Symantec-issued TLS server
certificate issued on or after June 1, 2016 or a currently valid
certificate issued from any other trusted CA as of Chrome 66.

Site Operators that obtained a certificate from Symantec’s old
infrastructure after June 1, 2016 are unaffected by Chrome 66 but will
need to obtain a new certificate by the Chrome 70 dates described
below.

Chrome 70 released to Beta, which will remove trust in the old
Symantec-rooted Infrastructure. This will not affect any certificate
chaining to the new Managed Partner Infrastructure, which Symantec has
said will be operational by December 1, 2017.

Only TLS server certificates issued by Symantec’s old infrastructure
will be affected by this distrust regardless of issuance date.
~October 23, 2018 Chrome 70 released to Stable.

10% popularity Vote Up Vote Down


Back to top | Use Dark Theme