TrustCor Systems will no longer be used as a root certificate authority in Microsoft, Mozilla, & Google products. The Chrome browser for desktops will no longer accept certificates generated by TrustCor Systems as of version 111, according to this blog post.
As some of you my know, service known as a certificate authority verifies the security certificate for Websites that end users connect to (CA). However, the CA may simply be a link in the chain of trust because a party further up the chain may have validated the CA’s own certificate. Root CAs, CAs whose security certificates provide the foundation of Internet trust, are at the highest level.
The majority of popular web browsers & operating systems typically trust the security certificates issued by these root CAs.
The post said TrustCor Systems, a certificate authority with a Panamanian registration, had lately come under criticism after security researchers claimed it was connected to a group that provided US intelligence agencies with a spyware SDK. Even while no specific charge of misconduct was confirmed, the claims, coupled with the organization’s unsatisfactory replies to security researchers, caused trust in them to crumble (such as issuing a certificate they should not have). In this system, trust is crucial, & any CA that betrays that trust will be destroyed.
Microsoft, Mozilla, & Google have all made announcements announcing the removal of TrustCor’s certificates from their respective root stores in response to this news.
