Log in or Sign up

Apple to Revoke Trust in WoSign Certificates

Discussion in 'other security issues & news' started by ronjor, Oct 4, 2016.

ronjor Global Moderator

Joined:

Jul 21, 2003

Posts:

163,899

Location:

Texas

By Eduard Kovacs on October 04, 2016

After Mozilla announced that it might ban new certificates issued by Chinese certificate authority (CA) WoSign and its subsidiary StartCom for at least one year, Apple has decided to take measures.
Click to expand...

ronjor, Oct 4, 2016

#1
itman Registered Member

Joined:

Jun 22, 2010

Posts:

8,593

Location:

U.S.A.

A bit more detail here: https://www.scribd.com/document/325417135/Wo-Sign-and-Start-Com

Might be wise to manually untrust the root CA's yourself.

itman, Oct 5, 2016

#2
itman Registered Member

Joined:

Jun 22, 2010

Posts:

8,593

Location:

U.S.A.

Another good read on Wo-Sign certficates is here: https://www.schrauger.com/the-story-of-how-wosign-gave-me-an-ssl-certificate-for-github-com

itman, Oct 5, 2016

#3
ronjor Global Moderator

Joined:

Jul 21, 2003

Posts:

163,899

Location:

Texas

WoSign Changes Leadership Due to Certificate Incidents

By Eduard Kovacs on October 10, 2016
Following Mozilla’s proposal to ban its certificates for at least one year and Apple’s decision to revoke trust in its certificates, Chinese certificate authority WoSign appears to be taking serious action in hopes of obtaining forgiveness from major web browser vendors
Click to expand...

.

ronjor, Oct 10, 2016

#4

(You must log in or sign up to reply here.)

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn More...