Get Ahead of Chrome Changes with Cortex Xpanse

Jul 08, 2024
3 minutes
... views

Identify Entrust-Issued Certificates Before Google Chrome Blocks Them in November Using Cortex Xpanse

In June 2024, Google announced it would no longer trust digital certificates issued by Entrust, a popular certificate authority. This decision will block all websites that use Entrust Certificates from consumers using Chrome and other browsers may follow suit. Organizations need to quickly identify and re-issue certificates for all sites before the block takes effect in November. Cortex Xpanse can help identify impacted sites, and verify that they are updated, to ensure minimal website outages.

Google's decision to no longer trust digital certificates issued by Entrust is due to years of security concerns and lapses documented in its blog post. Certificate authorities are responsible for issuing SSL/TLS certificates, which are used to encrypt data transmitted between a web server and a user's browser. This helps to prevent eavesdropping and tampering with sensitive information such as passwords, credit card numbers, and other personal data.

Certificate security is central to protecting users' data and privacy, and Google no longer believes Entrust is sufficiently secure to merit browser trust. In recent years, there have been several high-profile incidents where certificate authorities have been hacked or issued certificates improperly, leading to concerns about the overall security of the system.

To address these concerns, Google has implemented a number of measures to improve the security of the SSL/TLS system, including the development of new certificate transparency standards and the implementation of stricter requirements for certificate authorities. In this context, Google's decision to no longer trust certificates issued by Entrust is part of a broader effort to improve the overall security and integrity of the SSL/TLS system.

Identifying Entrust Certificates with Cortex Xpanse

Tracking down all your websites can be challenging for organizations, given the fragmented nature of website creation and maintenance. Xpanse can help by automatically indexing your entire public-facing attack surface. This comprehensive discovery also allows you to quickly sort and filter for different types of assets. Discovering all certificates issued by Entrust is just a few clicks away.

Figure 1: Identify all your Entrust-issued certificates automatically with Xpanse
Figure 1: Identify all your Entrust-issued certificates automatically with Xpanse

 

In addition to identifying Entrust certificates, Cortex Xpanse can help organizations discover and manage other internet-facing assets, such as domains, IP addresses, and cloud instances. This can help organizations gain a comprehensive view of their attack surface and take proactive measures to mitigate potential threats.

Deprecating Entrust certificates could involve the identification and re-issuance of thousands of certificates for your organization. Cortex Xpansse will help ensure your websites remain secure and trusted by Chrome and other browsers.

To learn more about Xpanse, please read the Cortex Xpanse datasheet.

 


Subscribe to Security Operations Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.