Google To Remove China's Root Certificate Authority From Chrome Over Ties To Forged Certificate

[Guest]

Google announced that it will ban China's CNNIC root CA from its Chrome browser after the recent forged certificate incident by an intermediary certificate authority with a digital intermediate certificate from CNNIC.

Google To Remove China's Root Certificate Authority From Chrome Over Ties To Forged Certificate : Read more

 

[kenjitamura]

Reaffirms my decision to use Chrome as my main web browser.

 

[Maxime506]

Good job Google.

 

[vaughn2k]

"For the users that CNNIC has already issued the certificates to, we guarantee that your lawful rights and interests will not be affected.." Yeah right...

 

[alextheblue]

They'll strike a deal before long.

 

[Achoo22]

That's great, so long as there is always a way for users to accept certificates Google deems insecure. What we can't have is a situation where overlord Google is the sole guarantor of web security, gatekeeper to all encrypted sites.

 

[hellogts]

They'll strike a deal before long.

That's great, so long as there is always a way for users to accept certificates Google deems insecure. What we can't have is a situation where overlord Google is the sole guarantor of web security, gatekeeper to all encrypted sites.

If you don't trust Google, don't use Chrome, simple.
'Don't be Evil' - Google

 

[Achoo22]

If you don't trust Google, don't use Chrome, simple.

Better to be able to use Chrome without trusting Google.

 

[ananke]

CNNIC was hacked and certificates stolen, hence Google is immediately shutting them off, to ensure the existence of "cloud" and "Internet" the way we know it Probably, this was related to the bank sham that IBM announced discovered yesterday...Of course, nobody wants to explain clearly.

 

[f-14]

2. For the users that CNNIC has already issued the certificates to, we guarantee that your lawful rights and interests will not be affected."

RIGHTS? YOU HAVE NO STINKING RIGHTS IN CHINA, YOU TAKE WHAT YOU ARE GIVEN BY CHINAGOV AND LIKE IT OR ELSE! *POOF*

 

[shiitaki]

I have more respect for Google since they are willing to take a stand.

Microsoft will ask how high when China asks them to jump. They never have and never will promote or protect the end user. Everything about MS is how to shovel more money to stock holders.

I think there are simply too many Certificates anyway. It is a lot of work but maybe it is worth investigating the removal of 95 percent of them. I don't need any certs from mother Russia, Nigeria, or for that matter anywhere else I never go. And just to be fair, I don't need the five from the DOJ either.

 

[ethanolson]

Ever look at the list of trusted root certificate authorities in your browser? Scary.

a) CNNIC's second point in their statement is bullcrap.
b) Mozilla's approach is appropriately diplomatic and perfectly sound. It's a level-headed approach that stands as an example of good stewardship.

... and c) despite Mozilla's awesome approach and Google's seemingly over-the-top reaction, I don't care if China-tech sucks it and gets flushed.

 

[ethanolson]

Oh... and another piece of the China taking over the world puzzle: GoDaddy is actually Go China Domains.

 

[eddss]

2. For the users that CNNIC has already issued the certificates to, we guarantee that your lawful rights and interests will not be affected."

RIGHTS? YOU HAVE NO STINKING RIGHTS IN CHINA, YOU TAKE WHAT YOU ARE GIVEN BY CHINAGOV AND LIKE IT OR ELSE! *POOF*

2. For the users that CNNIC has already issued the certificates to, we guarantee that your lawful rights and interests will not be affected."

RIGHTS? YOU HAVE NO STINKING RIGHTS IN CHINA, YOU TAKE WHAT YOU ARE GIVEN BY CHINAGOV AND LIKE IT OR ELSE! *POOF*

CNNIC was a virus somehow around year 2003. Is it a virus now? I don't know, I never trust it since I was fighting with CNNIC and trying to remove it from my computer in year 2003. Finally, CNNIC won, I had to reinstall my OS.