Comment on Chrome Root Store policy update looking to require an automated option for obtaining certificates
astray@lemm.ee 1 year agoGoogle trough the Chrome Project are pushing certificate authorities to offer automated certificates services to customers to make their use more prolific. Certificate authorities only have value if they are included in the certificate store, so they will do whatever it takes to be in there. Certificate authorities are the organizations we trust to say if a website is secure enough to display the lock in the browser instead of an error.
spacecowboy@sh.itjust.works 1 year ago
Hi I’m 5 years old and I have no clue what you just said.
Spotlight7573@lemmy.world 1 year ago
In order to know that you are talking to the right person on the web, you need someone else that you trust to say they are who they say they are. That is a Certificate Authority. They verify that the example.com you are talking to is the actual example.com through math that’s hard to fake. Currently, the process of performing this verification can be either done manually by a person or automatically through software depending on what the Certificate Authority supports. Chrome is planning on changing their policy to require that an automatic option be available for all Certificate Authorities, without necessarily taking away the manual option from those who still want to use it.
spacecowboy@sh.itjust.works 1 year ago
That was absolutely digestible by a 5 year old like me. Many thanks!