Google’s cert sanction may hamper browsing, trigger China retaliation
The impact of Google’s decision to remove the root certificates issued by a Chinese certificate authority could hamper millions of Chrome users, particularly those in China.
That move, which Google will make in a future Chrome update, will put warnings in front of the browser’s users, telling them that sites using the root and EV (Extended Validation) certificates issued by CNNIC (China Internet Network Information Center) are not to be trusted. Rather than pull the plug immediately, however, Chrome will continue to trust existing CNNIC-issued certificates “for a limited time.”
Mozilla will also sanction CNNIC, but will not remove the root certificates.