Spanish banished: Google Chrome to snub Camerfirma for lax cert management


When Google Chrome 90 arrives in April, visitors to websites that depend on TLS server authentication certificates from AC Camerfirma SA, a digital certificate authority based in Madrid, Spain, will find that those sites no longer present the secure lock icon.

Certificate authorities (CAs) are in the business of signing digital certificates to certify that those certs belong to the domains with which they’re associated. Such promises are part of the chain of trust that allows internet users to visit, say, an online banking website and have some assurance that the website is legitimate. When CAs fail to police their certificates, or adequately secure their own systems, security problems may follow, as happened with DigiNotar a decade ago.

Read more…