We helped thousands navigate the Symantec distrust in 2018. Join us for an experience-backed roadmap to avoiding disruption from the Entrust distrust.
Les certificats TLS publics émis à partir de racines Entrust comportant un SCT (Signed Certificate Timestamp) ultérieur au 31 octobre 2024 ne seront pas validés par Google Chrome.
Nous savons que cet incident présente un risque de perturbation majeur pour un grand nombre d’organisations.
En tant que leader mondial des solutions PKI et TLS/SSL de confiance, nous nous engageons à mettre nos services et produits à votre disposition pour vous aider à maintenir la continuité de vos activités et opérations critiques, et ce pendant et après la migration de vos certificats Entrust.
En tant qu’autorité de certification (AC) présente dans le root store de tous les principaux navigateurs, nous prenons notre responsabilité très au sérieux. Depuis plus de deux décennies, notre seul et unique objectif est de tout mettre en œuvre pour garantir à nos clients la confiance numérique qui leur permet de communiquer, d’échanger et d’effectuer des transactions en toute sécurité dans le monde connecté.
We take our responsibility as a Certificate Authority (CA) in the root store of all major browsers very seriously. Our entire company’s sole focus is—and has been for more than two decades—to do everything in our power to deliver digital trust to our customers that enables them to safely communicate, engage, and transact across the breadth of the connected world.
Nos experts vous aident à effectuer la transition sans perturbation ni interruption de service coûteuse.
N’hésitez pas à nous contacter.
Comment éviter les problèmes engendrés par des certificats émis en dehors des standards établis
Pourquoi la conformité constitue le socle de la confiance numérique
DigiCert lance un outil innovant pour les tests automatisés des certificats numériques
What is a CA's role in delivering digital trust?
What is digital trust?
Certificate management for TLS best practices
When will my Entrust certificates be distrusted by Google Chrome?
Public TLS certificates issued from Entrust roots with a Signed Certificate Timestamp (SCT) dated after October 31, 2024, will not be trusted by Google Chrome after October 31, 2024.
Any TLS certificate with an SCT dated before October 31, 2024, will be valid for its term.
When should I start replacing my current Entrust certificates?
We recommend customers start planning their replacement strategy as soon as possible to get an accurate inventory of their certificates with their corresponding expiry date, assess the risk profile of the associated service, and plan the replacement process. Here are the top 4 things you should do today. (link to section on the site that says this)
How can I determine if we are using Entrust certificates in our environment?
A variety of tools can connect to your infrastructure to scan and discover certificates in your environment. DigiCert Trust Lifecycle Manager (TLM) and DigiCert CertCentral can evaluate your environment to identify any Entrust certificates in need of replacement. Contact us if you need help with this.
How long will it take to get new certificates?
Getting new certificates can be done very quickly; however, you will need to be responsive and quick to work with us. We will need to validate your domain, which takes seconds, and then validate your organization, which can be done in minutes. The entire process of getting your new certificates can be completed very quickly.
After this initial organization validation is done, future certificates will not need to go through this process until their validation expires—according to industry guidelines—which means subsequent certificate requests will be even quicker.
How can we trust that DigiCert will not have a similar distrust problem?
There are three things that distinguish DigiCert and its certificate authority business. First, we have well defined processes that we follow diligently and use tools like PKILint that we’ve developed to help mitigate issues. Second, we work closely with the CA/Browser Forum to respond to issues quickly and transparently; when issues arise, we work quickly to solve them. Finally, we are an active participant with the standards bodies, ensuring that we not only comply with standards but help evolve them for the benefit of industry.