Google will block websites using Entrust certificates in its Chrome browser, starting around November 1, 2024. This is due to compliance failures and Entrust’s inability to address security issues promptly.
According to Google’s Chrome security team, incidents have raised concerns about Entrust’s behaviors and eroded confidence in their competence as a certificate authority owner.
Google plans to stop trusting TLS server authentication certificates from Entrust in Chrome versions 127 and above by default. However, users and enterprise customers can override these settings if needed.
Google emphasizes the crucial role of certificate authorities in ensuring secure connections and highlights the risks posed by Entrust’s failure to address incident reports and improvement commitments.
The blocking action will affect Chrome on Windows, macOS, ChromeOS, Android, and Linux. Chrome for iOS and iPadOS will be exempt due to Apple’s restrictions.
Users visiting sites with Entrust certificates will see a warning message indicating an insecure connection. Website operators are advised to switch to trusted certificate authorities to avoid disruptions.
Google suggests obtaining new TLS certificates from other CAs listed in the Chrome Root Store before the blocking action takes effect on November 1, 2024.
