Chrome ssl news

Here are some recent news and updates related to Chrome and SSL/TLS:

Chrome 83: New SSL/TLS warnings

In Chrome 83, Google introduced new warnings for SSL/TLS certificates that are not trusted or have issues. These warnings aim to improve user security and protect against man-in-the-middle attacks.

Chrome 84: Improved SSL/TLS certificate validation

Chrome 84 introduced improved SSL/TLS certificate validation, which includes:

  1. Enhanced certificate transparency: Chrome now checks the certificate transparency log to ensure that the certificate has been logged and is not revoked.
  2. Improved certificate chain validation: Chrome now checks the certificate chain to ensure that it is valid and trusted.
  3. Enhanced certificate revocation checking: Chrome now checks the certificate revocation list (CRL) and online certificate status protocol (OCSP) to ensure that the certificate is not revoked.

Chrome 85: New SSL/TLS certificate requirements

Chrome 85 introduced new SSL/TLS certificate requirements, including:

  1. Support for TLS 1.3: Chrome now requires TLS 1.3 support for all SSL/TLS certificates.
  2. Improved certificate trust: Chrome now requires certificates to be trusted by the operating system or a trusted certificate authority.
  3. Enhanced certificate validation: Chrome now performs additional certificate validation checks, including checking the certificate's subject alternative names (SANs) and subject common name (CN).

Chrome's SSL/TLS certificate pinning

Chrome has implemented SSL/TLS certificate pinning, which involves pinning specific certificates to specific domains. This helps to prevent man-in-the-middle attacks and ensures that users are connected to the intended domain.

Chrome's SSL/TLS certificate transparency

Chrome has implemented certificate transparency, which involves logging SSL/TLS certificates in a public transparency log. This helps to ensure that certificates are not revoked or compromised.

Chrome's SSL/TLS certificate revocation checking

Chrome performs regular certificate revocation checking to ensure that SSL/TLS certificates are not revoked or compromised. This helps to prevent man-in-the-middle attacks and ensure user security.

Chrome's SSL/TLS certificate trust

Chrome relies on the operating system's certificate trust store to determine which SSL/TLS certificates are trusted. This ensures that users are protected by the operating system's built-in security features.

Chrome's SSL/TLS certificate validation

Chrome performs extensive SSL/TLS certificate validation checks, including:

  1. Certificate chain validation: Chrome checks the certificate chain to ensure that it is valid and trusted.
  2. Certificate revocation checking: Chrome checks the certificate revocation list (CRL) and online certificate status protocol (OCSP) to ensure that the certificate is not revoked.
  3. Certificate trust: Chrome checks the certificate's trust status to ensure that it is trusted by the operating system or a trusted certificate authority.

I hope this information is helpful!