Sunday, October 21, 2018

SSL Certificates

Final Warning to Replace Symantec SSL certificates

This is the last few weeks for website owners using Symantec SSL certificates issued before December 1, 2017 to replace their certificate. Failing to do so will result in your website will get  with saying “Certificate not trust”.

As per Digicert announcement, near the end of July 2017, Google Chrome created a plan to first reduce and then remove trust (by showing security warnings in the browser) for all Symantec-, Thawte-, GeoTrust-, and RapidSSL-issued SSL/TLS certificates. The plan includes changes that were rolled out starting with Chrome version 66 and continues with version 70.
You must replace your affected certificates to provide an optimal user experience for all TLS/SSL applications, including browsers.

For more information visit

New Chain of Trust

DigiCert took over validation and issuance for all Symantec Website Security SSL/TLS certificates on December 1, 2017. This includes certificates for Symantec and its subsidiary CAs: Thawte, GeoTrust, and RapidSSL. Going forward, all new and reissued Website Security certificates are issued by DigiCert (using one of our trusted roots) and are trusted by Google Chrome.
The new certificate chain DigiCert created does not interfere with your current certificate trust among browsers. The chain also establishes trust for your replacement certificate with Google Chrome (and other browsers) going forward.

For more information visit

Article by :  Samptha Hennayake LK Domain Registry