12月11日,Google发布公告称,在未来几周,Chrome、Android及其他Google产品将不再信任赛门铁克(Symantec)旗下的"Class 3 Public Primary CA"根证书。今年9月和10月,Google发现赛门铁克旗下的Root CA未经同意签发了众多域名的数千个证书,其中包括Google旗下的域名和不存在的域名。Google称其不能确定赛门铁克的该Root CA签发的证书将不会被用于拦截、破坏或冒充Google产品或用户的安全通信。且赛门铁克在知道以上威胁的情况下也不愿因详细说明签发这些证书的用途。故Google产品将不再信任"Class 3 Public Primary CA"根证书。这也算是Google对赛门铁克的惩罚吧。文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
虽赛门铁克不远透漏未经允许签发多个域名证书的用途,但其还是决定不再使用此Root CA。具体受影响Root CA如下:文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Further Technical Details of Affected Root:文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Friendly Name: Class 3 Public Primary Certification Authority文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Subject: C=US, O=VeriSign, Inc., OU=Class 3 Public Primary Certification Authority文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Public Key Hash (SHA-1): E2:7F:7B:D8:77:D5:DF:9E:0A:3F:9E:B4:CB:0E:2E:A9:EF:DB:69:77文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Public Key Hash (SHA-256):文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
B1:12:41:42:A5:A1:A5:A2:88:19:C7:35:34:0E:FF:8C:9E:2F:81:68:FE:E3:BA:18:7F:25:3B:C1:A3:92:D7:E2文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
MD2 Version文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Fingerprint (SHA-1): 74:2C:31:92:E6:07:E4:24:EB:45:49:54:2B:E1:BB:C5:3E:61:74:E2文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Fingerprint (SHA-256):E7:68:56:34:EF:AC:F6:9A:CE:93:9A:6B:25:5B:7B:4F:AB:EF:42:93:5B:50:A2:65:AC:B5:CB:60:27:E4:4E:70文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
SHA1 Version文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
文章源自堕落的鱼-https://www.duoluodeyu.com/2049.htmlFingerprint (SHA-1): A1:DB:63:93:91:6F:17:E4:18:55:09:40:04:15:C7:02:40:B0:AE:6B文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
Fingerprint (SHA-256): A4:B6:B3:99:6F:C2:F3:06:B3:FD:86:81:BD:63:41:3D:8C:50:09:CC:4F:A3:29:C2:CC:F0:E2:FA:1B:14:03:05文章源自堕落的鱼-https://www.duoluodeyu.com/2049.html
