Google issued "Intent to Deprecate and Remove" trust in existing Symantec-issued Certificates


THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT v6 and later

DISCUSSION

Google has issued an "Intent to Deprecate and Remove" trust in existing Symantec-issued Certificates, requiring that, over time, they be replaced with new, fully revalidated certificates. All newly-issued certificates must have validity periods of no greater than 9 months (279 days) to be trusted in Google Chrome version 61 and later. All Symantec-issued certificates are affected, including GeoTrust and Thawte, which are CAs operated by Symantec. Therefore, in the future, if EFT uses a Symantec-issued certificate, Google Chrome will not trust it. According to Google, "Assessing the compatibility risk with both Edge and Safari is difficult, because neither Microsoft nor Apple communicate publicly about their changes in trust prior to enacting them."

Refer to the following web pages for details of this issue: