Want more timely Centmin Mod News Updates?
Become a Member

SSL Google nullifies all Symantec EV SSL Certificates

Discussion in 'Domains, DNS, Email & SSL Certificates' started by eva2000, Mar 25, 2017.

  1. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    Wow this is huge news in SSL certificate world in that Google has punished Symantec by nullifying all Symantec EV (Extended Validation) SSL certificates Google takes Symantec to the woodshed for mis-issuing 30,000 HTTPS certs [updated] !

    and eventually all Symantec SSL certificates will meet a similar fate !
     
  2. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    Google Groups
     
  3. bassie

    bassie Active Member

    525
    109
    43
    Apr 29, 2016
    Ratings:
    +334
    Local Time:
    5:58 AM
    If its good or bad to you, your neighbor or anyone else, it does not matter.
    Fact is that Google has become way too powerful.
     
  4. BamaStangGuy

    BamaStangGuy Active Member

    470
    137
    43
    May 25, 2014
    Ratings:
    +180
    Local Time:
    10:58 PM
    It is a catch 22 for me. I love it. While I hate monopolies, I feel like they still remain on the better side of morals when it comes to large corporations and they continuously fight against the U.S. surveillance state.
     
  5. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    indeed finding that balance

    But seriously Symantec mis-issuing 30,000 EV SSL certificates is crazy - that erodes the trust in the EV SSL process ! How should Symantec be penalised otherwise ?
     
    • Agree Agree x 2
  6. bassie

    bassie Active Member

    525
    109
    43
    Apr 29, 2016
    Ratings:
    +334
    Local Time:
    5:58 AM
    True but finding the balance is hard.
    Symantec should be penalized but now the genuine consumers are in fact screwed.
    Google is the same evil ... like almost all big techies.

    It gives a double feeling.
    A little bit of: It is a case of the pot calling the kettle black.
     
  7. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    Yeah but I wonder how those companies paying for Symantec EV SSL certificates feel if some 3rd party managed to mis-issue and maliciously use a copy of their domains' EV SSL certificates ? Don't think the article states whether domain validated SSL certs have been mis-issued too though ? As a customer, I'd be moving off Symantec anyway for SSL certs.
     
  8. bassie

    bassie Active Member

    525
    109
    43
    Apr 29, 2016
    Ratings:
    +334
    Local Time:
    5:58 AM
    I'm curious how many customers say they go away and then really migrate the infrastructure afterwards.
    Symantec/VeriSign SSL is a big fish.

    Many large customers like Oracle and Governments with their complex solutions depends on Symantec/VeriSign SSL.
    You could migrate website SSL certs easy peasy but it does not apply of course to complex authentication mechanisms.
     
  9. Revenge

    Revenge Active Member

    287
    64
    28
    Feb 21, 2016
    Portugal
    Ratings:
    +227
    Local Time:
    4:58 AM
    1.9.x
    10.1.x
    Chrome is giving more than a year. Its more than enough for them to change to a more reliable company that issues certificates.
     
    • Agree Agree x 1
  10. Jimmy

    Jimmy Premium Member Premium Member

    1,081
    242
    63
    Oct 24, 2015
    East Coast USA
    Ratings:
    +579
    Local Time:
    11:58 PM
    1.13.x
    MariaDB 10.1.x
  11. bassie

    bassie Active Member

    525
    109
    43
    Apr 29, 2016
    Ratings:
    +334
    Local Time:
    5:58 AM
    1 year is actual not that much.
    It's all about politics in cases like this.
    Nothing about the actual solutions created by engineers.

    Symantec Backs Its CA
     
    Last edited: Mar 25, 2017
  12. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    Will be interesting to see how this all plays out either way !
     
  13. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    wow Symantec just put their foot in their mouth again http://thehackernews.com/2017/03/symantec-ssl-certificates.html

    and to make it worse Symantec knew of this since 2015!
     
  14. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
  15. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    Google Groups

    still an uphill battle it seems

     
  16. eva2000

    eva2000 Administrator Staff Member

    29,732
    6,713
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,023
    Local Time:
    1:58 PM
    Nginx 1.13.x
    MariaDB 5.5
    The end is near for Symantec ssl certificates Google to kill Symantec certs in Chrome 66, due in early 2018