Google全系列产品不再信任赛门铁克某款根证书-转载(转载)

科技网编2023-03-07 20:592180

  Google宣布在接下来的几周,Google会在Chrome、Android和其他Google产品中将把赛门铁克颁发的“Class 3 Public Primary CA”根证书设为不可信。

  接下来的几周,Google会在所有的Chrome、Android和Google产品中将把赛门铁克颁发的“Class 3 Public Primary CA”根证书设为不可信。Goole称这么做是为了回应赛门铁克的通知,这份通知称,自2015年12月1日起,赛门铁克决定此根证书不再遵从CA/浏览器论坛的基准要求。

  CA/浏览器论坛的基准要求是行业的最佳方案,同时 也是证书受信任的基础。Goole称,拒绝遵守这些要求会带来巨大的风险,因此采取预防措施移除这款根证书非常有有必要。赛门铁克知晓这对Goole用户的风险,但拒绝说明这些证书的新用途。

  技术信息

  Friendly Name: Class 3 Public Primary Certification Authority

  Subject: C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority

  Public Key Hash (SHA-1): E2:7F:7B:D8:77:D5:DF:9E:0A:3F:9E:B4:CB:0E:2E:A9:EF:DB:69:77

  Public Key Hash (SHA-256):

  B1:12:41:42:A5:A1:A5:A2:88:19:C7:35:34:0E:FF:8C:9E:2F:81:68:FE:E3:BA:18:7F:25:3B:C1:A3:92:D7:E2

  MD2 Version

  Fingerprint (SHA-1): 74:2C:31:92:E6:07:E4:24:EB:45:49:54:2B:E1:BB:C5:3E:61:74:E2

  Fingerprint(SHA-256): E7:68:56:34:EF:AC:F6:9A:CE:93:9A:6B:25:5B:7B:4F:AB:EF:42:93:5B:50:A2:65:AC:B5:CB:60:27:E4:4E:70

  SHA1 Version

  Fingerprint (SHA-1): A1:DB:63:93:91:6F:17:E4:18:55:09:40:04:15:C7:02:40:B0:AE:6B

  Fingerprint(SHA-256): A4:B6:B3:99:6F:C2:F3:06:B3:FD:86:81:BD:63:41:3D:8C:50:09:CC:4F:A3:29:C2:CC:F0:E2:FA:1B:14:03:05

评论区