SSL

HTTPS warnings in Chrome 42

67 views August 9, 2017 June 7, 2018 0

Google has announced that in newer versions of Chrome, they will discontinue trust for certificates signed with older signing algorithms. January 1, 2016, is the date they have announced. From Chrome 42 on, this means some sites encrypted with older SSL certificates will get a warning in the address field. What kind of warning will appear depends on the expiry date of the certificate. Note that your SSL certificate might be signed with an outdated algorithm, without your getting a warning. If this happens, it is because the certificate expires before the end of 2015, in which case you will have to renew it anyway before the browsers start introducing actual restrictions.

This means that the site is encrypted using a certificate signed with an outdated algorithm, most likely SHA1, but that the certificate expires sometime during 2016. Some browsers will continue to trust the certificate from January 1, 2016, but Chrome will not.

Recommendation: Order a new certificate, signed with SHA256, before January 2016.

This means that the site is encrypted using a certificate signed with an outdated algorithm, and that the certificate expires after January 1, 2017. After that date, none of the major browsers will trust it.

Recommendation: Order a new certificate, signed with SHA256, as soon as possible.

Was this helpful?