Add Eventual Distrust Symantec Certificates to BadSSL.

chromium / badssl.com

:lock: Memorable site for testing clients against bad SSL configs.

https://badssl.com

Apache License 2.0

2.85k stars 191 forks source link

Add Eventual Distrust Symantec Certificates to BadSSL. #315

Open prefixtitle opened 7 years ago

prefixtitle commented 7 years ago

We should add a Symantec issued certificate to BadSSL to demonstrate the eventual distrust in Symantec issued SSL certificates starting from Chrome 66 (issued prior to June 1, 2016) and the total distrust of the Symantec roots and certificate (issued after June 1, 2016) starting from Chrome 70. See: https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html

prefixtitle commented 7 years ago

We won't able to get a back dated SSL from Symantec. Only one which will be distrusted in Chrome 70.

DanielRuf commented 5 years ago

What is the current state?

lgarron commented 5 years ago

What is the current state?

We don't have any such certs.

redcatpaw commented 3 years ago

http://invalid-expected-sct.badssl.com shows symantec error