Skip to main content

Update — Chrome 41 Release and SHA-1

Jan

27

2015

Time to read

Read so far

Written by: 

Bruce Morton

Time to read

Written by: 

When Google Chrome 41 is released, it will treat certificate chains using SHA-1 which are valid past January 1, 2017 as affirmatively insecure.

Danger https

 

The release date of Chrome 41 is not definitive, but it is expected to be about 6 weeks after Chrome 40. As Chrome 40 was released on January 23, 2015, we expect Chrome 41 to be released about March 6, 2015.

We highly recommend that all users of SHA-1 signed SSL certificates which expire after 2015 to renew these certificates signed with SHA-2. The result will remove warning message to the users of your website. It will also prepare your site for the full SHA-1 deprecation scheduled for 2017.

Please visit our website for more information on migration from SHA-1 to SHA-2.

photo-bruce-morton
Bruce Morton
Director for Certificate Services
Bruce Morton is a pioneering figure in the PKI and digital certificate industry. He currently serves as Director for Certificate Services at Entrust, where he has been employed since 1997. His day-to-day responsibilities include managing standards implementations, overseeing Entrust’s policy authority, and monitoring Entrust Certificate Services for industry compliance.
View all of Bruce's Posts