Google has announced that starting around November 1, 2024, it will block websites using certificates from Entrust in its Chrome browser. This decision is based on compliance failures and Entrust’s inability to address security issues promptly.
According to Google’s Chrome security team, Entrust’s behavior has raised concerns about its competence, reliability, and integrity as a publicly trusted certificate authority owner. As a result, Google plans to stop trusting TLS server authentication certificates from Entrust in Chrome versions 127 and higher by default.
Google emphasized the importance of certificate authorities in securing encrypted connections between browsers and websites. The blocking action will apply to various versions of Chrome but will not affect Chrome for iOS and iPadOS due to Apple’s policies.
Websites using Entrust or AffirmTrust certificates will display an interstitial message warning users of insecure connections. Website operators are advised to switch to a different certificate authority to avoid disruptions before the blocking action takes effect on November 1, 2024.
Google stated that website operators can delay the impact by obtaining a new TLS certificate from a different CA before the deadline. However, they will eventually need to transition to a CA included in the Chrome Root Store.
