SENSE4US

Questions?

Do you have a question about the Sense4us project?

Please feel free to contact us:
[email protected]

Newsletter

All Newsletter issues are available here

Google Submariner surfaces untrusted certificate authorities

Google calls out certificate authorities that can no longer be trusted and helps you steer clear of potentially fraudulent credentials.

It isn't always easy to tell with the SSL system when a certificate authority should be trusted, but Google's Submariner attempts to bring webmasters and users the level of details that can answer the question.

On the Web, behind the scenes, certificate authorities issue credentials for domains and other Internet resources. There are rules in place to make sure the entity requesting the certificate is the legitimate owner, but cyber criminals have successfully obtained fraudulent certificates in the past. This complicates the mission for Google’s Certificate Transparency project, which lets webmasters and users look at all certificates issued by a certificate authority - but can't include certificates that are no longer trusted.

Read more at InfoWorld