Google has shown that it would no longer trust the digital certificate issued by Chungwa Telecom and NetLock, citing “the behaviors observed in the last year”.
Expected that changes will be made to Chrome 139, which is planned For public release in early August 2025. The current main version is 137.
The update will affect server authentication certificates (TLS) issued by two certification bodies (CAS) after July 31, 2025, 11:59:59 PM UTC. Certificates issued before this date will not affect.
Chungwa Telecom is the largest in Taiwan integrated telecommunications service provider, and Netlock is a Hungarian company that offers digital identity, electronic signature, stamping time and authentication.
“Over the past few months and years, we have observed failures for fulfilling requirements, dissatisfied commitments to improve and lack of material, measuring progress in response to publicly disclosed incidents,” – Google Chrome Chrome and Chrome Security Team and Chrome Security Team – Note.
“If these factors are considered in the aggregate and are considered against the inherent risk that each of the publicly on the Internet is no longer justified.”
As a result of this change, the Chrome browser users on Windows, MacOS, Chromeos, Android and Linux, which go to the site served by any of the two CAS after July 31, will be filed with a full safety warning.
Website operators, which rely on two CAS, are advised to use Chrome Certificate Viewer to check for the certificates of their site and transition to a new public CA as soon as “reasonable” to avoid the user’s violation.
Businesses, however, can cancel them Shop -Karora shop restrictions by setting the appropriate root certificate in the form Root locally The Chrome Platform works. It is worth noting that Apple has exposed to the interviewee The CA Root Certificate “NetLock Gold (Gold Class) Certificate is valid on November 15, 2024.
Disclosure is happening after Google Chrome, Apple and Mozilla decide no longer introduce CA certificates signed Asy As of November 2024. The instruction has since sold out its certification business in SECTIGO.
Previously in this March Google disclosed that forum CA/browser accepted a multi -component issue of issuing (MPIC) and connecting as the required practices in The original requirements (BRS) to improve domain control check and dangerous practices in X.509 certificates.
