Google has announced that its Chrome browser will no longer trust certificates issued by Chunghwa Telecom and Netlock, following observed compliance failures and lack of measurable progress in improving their practices. This decision reflects increased scrutiny on certificate authorities, which play a crucial role in web security by issuing digital certificates that ensure the authenticity and encryption of online communications. The Chrome security team noted that these failures undermine public trust in the critical function these entities provide, leading to the decision to revoke their trusted status.
Over the past several months and years, we have observed a pattern of compliance failures, unmet improvement commitments, and the absence of tangible, measurable progress in response to publicly disclosed incident reports.
These certificate authorities wield significant control over the security of the web, and their ability to mint cryptographic credentials allows for the display of a padlock in address bars.
Collection
[
|
...
]