27
Chrome Root Store policy update looking to require an automated option for obtaining certificates (blog.chromium.org)
submitted 1 year ago by Spotlight7573@lemmy.world to c/technology@lemmy.world
5 comments fedilink hide all child comments

Upcoming Policy Changes

One of the major focal points of Version 1.5 requires that applicants seeking inclusion in the Chrome Root Store must support automated certificate issuance and management. [...] It’s important to note that these new requirements do not prohibit Chrome Root Store applicants from supporting “non-automated” methods of certificate issuance and renewal, nor require website operators to only rely on the automated solution(s) for certificate issuance and renewal. The intent behind this policy update is to make automated certificate issuance an option for a CA owner’s customers.

you are viewing a single comment's thread
view the rest of the comments
[-] Sir_Kevin@lemmy.dbzer0.com 3 points 1 year ago

Can somebody ELI5?

[-] astray@lemm.ee 6 points 1 year ago

Google trough the Chrome Project are pushing certificate authorities to offer automated certificates services to customers to make their use more prolific. Certificate authorities only have value if they are included in the certificate store, so they will do whatever it takes to be in there. Certificate authorities are the organizations we trust to say if a website is secure enough to display the lock in the browser instead of an error.

[-] spacecowboy@sh.itjust.works 5 points 1 year ago

Hi I’m 5 years old and I have no clue what you just said.

[-] Spotlight7573@lemmy.world 4 points 1 year ago* (last edited 1 year ago)

In order to know that you are talking to the right website on the web, you need someone else that you trust to say they are who they say they are. That is a Certificate Authority. They verify that the example.com you are talking to is the actual example.com through math that's hard to fake. Currently, the process of performing this verification can be either done manually by a person or automatically through software depending on what the Certificate Authority supports. Chrome is planning on changing their policy to require that an automatic option be available for all Certificate Authorities, without necessarily taking away the manual option from those who still want to use it.

[-] spacecowboy@sh.itjust.works 4 points 1 year ago

That was absolutely digestible by a 5 year old like me. Many thanks!

this post was submitted on 15 Oct 2023
27 points (96.6% liked)

Technology

59094 readers
3563 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
L3s@fry.gs
L4s@fry.gs
L4s@lemmy.world
enu@lemmy.world