Computerworld

French intermediate certificate authority issues rogue certs for Google domains

An intermediate certificate authority (CA) registered to the French Ministry of Finance issued rogue certificates for several Google domains without authorization. Google detected the use of the ...
ExtremeTech

Google discovers new security holes in SSL -- is the entire system fundamentally flawed?

Google has discovered a flaw in an intermediate certificate authority and revoked its permissions, but the problem points to root issues with the SSL system. Can they be fixed? Google wants to try.
Infosecurity-magazine.com

Major Browsers Block an Improperly Issued Certificate

Over the weekend, the Google Online Security Blog issued a brief alert. "Late on December 3rd, we became aware of unauthorized digital certificates for several Google domains. We investigated ...
Threat Post

French Government Spoofs Google Certificate

Google revoked digital certificates for some of its domains that had been fraudulently signed by an intermediate certificate authority with links to ANSSI, France’s cyber-defense agency. Google last ...
GIGAZINE

Let's Encrypt details changes to certificate issuance, including new certificate chains, removal of Client Authentication EKU, and shorter certificate validity periods.

Let's Encrypt has announced details of its overall policy regarding certificates issued going forward, including 'certificate chain renewal,' 'removal of TLS client authentication EKU (Enhanced Key ...