With the release of Chrome 66 in April, Symantec web certificates issued prior to June 2016 or after December 2017 will be considered untrustworthy by Chrome. In order to retain trust by the Chrome browser, you need to replace these certificates. Read on…
“Google has decided Symantec’s certificates are untrustworthy”
Do you have a Symantec web certificate? By October all Symantec certificates will become untrustworthy.
Don’t worry, Symantec has been Acquired By Digicert
Symantec was purchased by DigiCert, and the two have merged their certificate authorities. Companies are encouraged to get HTTPS certs from either DigiCert or elsewhere.
From December 1, 2017, all Symantec certificate brands (Symantec, GeoTrust, Thawte and RapidSSL) will be issued from DigiCert’s validation platform and Chrome will trust those certificates. For clarity: the Symantec certificate brands will continue to exist after December 2017, but certificates will only be issued from a different, upgraded validation platform.
Google continues to trust all Symantec certificates that have been issued from this new platform after December 1st, 2017.
Reference: Information for Replacement of Symantec SSL/TLS Certificates, www.symantec.com
What you have to do if you have a Symantec SSL certification issued prior to June 1, 2016?
Scenario 1:
If the certificate expires prior to March 15, 2018, you need to do nothing. The certificate will continue to be trusted by Chrome until it expires.
Scenario 2:
If the certificate expires after March 15, 2018, but before September 13, 2018, you can re-issue this certificate any time before March 15, 2018.
Scenario 3:
If the certificate expires after September 13, 2018, you will need to re-issue the certificate before March 15, 2018.
For certificates issued after June 1, 2016?
Scenario 1:
If you have an existing certificate that has been issued after June 1, 2016, the Chrome browser will no longer trust this certificate after September 13, 2018.
Scenario 2:
If the certificate expires prior to September 13, 2018, you need to do nothing. The certificate will continue to be trusted by Chrome until it expires.
Scenario 3:
If the certificate expires after September 13, 2018, you will need to re-issue the certificate before September 13, 2018.
**We understand your busy schedule. However, please try your best to remember the important dates as mentioned above.
For Exabytes Customers Who Own An SSL With Us
We care about your website and take the case very seriously. Please stay tuned for further announcements. We will be re-issuing the certificate batch by batch.
** For Exabytes clients who purchase your SSL certificates with other providers, please be reminded to contact your provider as soon as you can for further updates.
If you wish to install an SSL certificate on your website, please feel free to visit our SSL page or have a LiveChat with our friendly representatives.