top | item 13941579

(no title)

> Intent to Deprecate and Remove: Trust in Existing Symantec-Issued Certificates

When I read that something like this popped up in my head:

"Google is using the nuclear option on Symantec. Neat!"

discuss

Shanea93|9 years ago

Perhaps it's neat for you, I just found out that our newly issued EV certificate status is being revoked in the next build of Chrome, so our expensive EV certificates may as well be $5 StartSSL certificates.

I imagine that there will be a lot of angry customers asking for refunds from Symantec/Verisign for certificates already issued which no longer conform to the offered product.

hannob|9 years ago

I for one find it totally neat that people realize their expensive EV cert was a waste of money. Although that was true before, too. EV certs are a waste of money, the only thing they do is show a green bar. They don't improve security.

ChristianBundy|9 years ago

How recently did you renew? This has been in the works for over two years,I'm surprised that anyone is still giving them business.

beedogs|9 years ago

Should've gone with a better vendor. Symantec has been a known bad actor in this field for years now.

unknown|9 years ago

[deleted]

the8472|9 years ago

If they're going nuclear then it's akin to merely lobbing tactical nukes on military bases, not city-busters on some megalopolis.

They're "only" planning to remove the extended validation indicator and reduce the maximum validity time instead of completely phasing out the root.