Back
-
Solutions
Back
Digital Trust for:
Enterprise IT, PKI & Identity
Code & Software
Documents & Signing
DigiCert® Device Trust Manager
Manage PKI and Certificate risk in one place
Optimizing Enterprise
Certificate Management for
Security and Digital Trust
Secure, update, monitor and control connected devices at scale
DOWNLOAD NOW - Buy
-
Insights
Back
Digital Trust for the Real World
Explore these pages to discover how DigiCert is helping organizations establish, manage and extend digital trust to solve real-world problems.
Ponemon Institute Report
See what our global post-quantum study uncovered about where the world stands in the race to prepare for quantum computing.
LEARN MORE >
-
Partners
Back
- Support
- Contact us
- Language
Google Announces Distrust of Entrust Certificates
The recent announcement of the Google Chrome distrust of Entrust has caused significant disruption to a large number of organizations. If you need replacement certificates or certificate lifecycle automation, we’re here to help.
Google Chrome to Distrust Entrust Certificates
Public TLS certificates issued from Entrust roots with a Signed Certificate Timestamp (SCT) dated after October 31, 2024 will not be trusted by Google Chrome.
- To be trusted by a browser, a certificate authority must comply with specific requirements defined by the CA/Browser Forum.
- To ensure trust is consistent and continuous, browsers receive regular audit reports about CA operations and compliance.
- Transparency is the rule. CAs are expected to work in good faith with browsers to fix and prevent issues.
- Recently, root programs indicated a lack of confidence in TLS certificate issuance practices of Entrust.
- Google ultimately made the decision to revoke its trust of Entrust on the Chrome browser.
What Does That Mean for Entrust Customers?
- Public TLS certificates issued off of Entrust roots whose earliest SCT is after October 31, 2024 will no longer be valid on Google Chrome.
- Those Entrust certificates will be treated as an unsecured site.
- Any TLS certificate with an SCT dated before October 31, 2024 will be valid for its term.
We’re Here to Help
We understand this incident poses significant risk of business disruption to a large number of organizations.
As the world leader in globally trusted PKI and TLS/SSL solutions, we are committed to making our services and solutions available to help you maintain critical operations and ensure uninterrupted business continuity during the transition from Entrust—and beyond.
What Steps Should You Take?
We recommend that owners of Entrust certificates follow these
4 steps now to ensure continuity of business:
Inventory certificates so you know what needs to be replaced and by when
Complete validation of organization(s) and domain(s)
Start issuing certificates
TRUST
Why Trust DigiCert?
We take our responsibility as a Certificate Authority (CA) in the root store of all major browsers very seriously. Our entire company’s sole focus is—and has been for more than two decades—to do everything in our power to deliver digital trust to our customers that enables them to safely communicate, engage, and transact across the breadth of the connected world.
How We Earn Your Trust
Compliance for all
DigiCert employs a proactive and data-driven approach to compliance—and even offer our technology freely to help other organizations do the same, including our recent open-source release of PKIlint, an automated certificate linter that enables users to rapidly check certificates for errors and compliance issues.
Global standards and governance
Without a globally accepted body of standards, there is no core foundation for trust. We adhere to all the requirements of the CA/Browser Forum for the issuance and management of certificates.
Leading by example
We work closely with the CA/Browser forum and leading standards organizations. We also actively participate and lead on numerous boards and initiatives. That’s because we see active leadership as the most effective means to continuously improve the security and dependability of security technologies and embody our mission to deliver digital trust in the real world.
Need Assistance Navigating Your
Migration from Entrust?
Our experts can help ensure you make the transition without disruption or costly outages.
Reach out today.
Related Resources
-
The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.
-
-
© 2024 DigiCert, Inc. All rights reserved.
Legal Repository Audits & Certifications Terms of Use Privacy Center Accessibility Cookie Settings