Skip to main content

Google to distrust all Symantec certificates

(Image credit: Image Credit: Antb / Shutterstock)

Chrome will soon stop trusting any security certificates issued by Symantec, Google has confirmed.

In a blog post (opens in new tab). Chrome Security's Devon O’Brien, Ryan Sleevi and Andrew Whalley said that certificates from the security firm will be ‘distrusted’, starting with version Chrome 66, and affecting all certificates issued before June 1 2016. 

At the same time, Symantec is working with webmasters to switch to Digi Cert certificates, after the company bought the firm's failing web security business.

Chrome 66 is expected to arrive in June next year, so the final shutdown should expected with Chrome 70 next October. This will, as Google puts it, "fully remove trust in Symantec's old infrastructure and all of the certificates it has issued."

For the uninitiated, Google decided to remove Symantec certificates after it had found a couple of certificates in 2015 which didn’t adhere to industry standards. Full investigation has confirmed that Symantec had actually outsourced the job to other companies and failed to oversee the job properly.

Webmasters that want to keep old Symantec certificates should be aware that there is a 13-month limit.

According to The Inquirer (opens in new tab), Symantec’s CEO Greg Clark said their customers will have a world-class experience moving forward.

"We carefully examined our options to ensure our customers would have a world-class experience with a company that offers a modern website PKI platform and is poised to lead the next generation of website security innovation," he said.

"I'm thrilled that our customers will benefit from a seamless transition to DigiCert, a company that is solely focused on delivering leading identity and encryption solutions."

Image Credit: Antb / Shutterstock

Sead Fadilpašić is a freelance tech writer and journalist with more than 17 years experience writing technology-focussed news, blogs, whitepapers, reviews, and ebooks. And his work has featured in online media outlets from all over the world, including Al Jazeera Balkans (where he was a Multimedia Journalist), Crypto News, TechRadar Pro, and IT Pro Portal, where he has written news and features for over five years. Sead's experience also includes writing for inbound marketing, where he creates technology-based content for clients from London to Singapore. Sead is a HubSpot-certified content creator.