Tech Support Forum banner
Status
Not open for further replies.
1 - 2 of 2 Posts

· Microsoft MVP, Microsoft Support Visiting Expert,
Joined
·
8,090 Posts
Discussion Starter · #1 ·
Tens of thousands of secure websites might start to display certificate errors to their visitors in January, when Microsoft plans to stop trusting 20 certificate authorities (CAs) from around the world.
The list of certificates that are scheduled to be removed from Microsoft’s Trusted Root Certificate Program belong to CAs run by private or state-owned organizations from the U.S., France, the Czech Republic, Japan, Denmark, Chile, Turkey, Luxembourg, Ireland, Slovenia and Brazil.
With their removal from Microsoft’s program, the CAs will also be removed from the certificate trust list in Windows that’s used by browsers such as Google Chrome, Internet Explorer and Microsoft Edge, as well as by email clients and other applications that support secure communications over SSL/TLS.
When such applications encounter a certificate on a website or other type of server, they verify its authenticity by checking whether it has been signed by a CA listed in the Windows certificate store, or by an intermediary issuer that’s itself signed by such a CA.
Microsoft move to revoke trust in 20 root certificates could wreak havoc on sites | PCWorld
 

· Registered
Joined
·
5,027 Posts
Will the user still be able to ADD a certificate into the system's "Windows certificate store" under this scheme? I believe this will lead to a LOT of user added entries which in turn may ultimately undermine the entire system of CA's and their intended purpose.

Typical MS....
 
1 - 2 of 2 Posts
Status
Not open for further replies.
Top