Published on: 2025-04-23 18:09:22
Why 47 Days? 47 days might seem like an arbitrary number, but it’s a simple cascade: 200 days = 6 maximal month (184 days) + 1/2 30-day month (15 days) + 1 day wiggle room 100 days = 3 maximal month (92 days) + ~1/4 30-day month (7 days) + 1 day wiggle room 47 days = 1 maximal month (31 days) + 1/2 30-day month (15 days) + 1 day wiggle room Apple’s justification for the change In the ballot, Apple makes many arguments in favor of the moves, one of which is most worth calling out. They stat
Keywords: automation certificate certificates day days
Find related items on AmazonPublished on: 2025-04-29 07:49:35
The CA/Browser Forum has voted to significantly reduce the lifespan of SSL/TLS certificates over the next 4 years, with a final lifespan of just 47 days starting in 2029. The CA/Browser Forum is a group of certificate authorities (CAs) and software vendors, including browser developers, working together to establish and maintain security standards for digital certificates used in Internet communications. Its members include major CAs like DigiCert and GlobalSign, as well as browser vendors suc
Keywords: certificate certificates days dcv lifespan
Find related items on AmazonPublished on: 2025-05-13 11:16:49
When Google announced Tuesday that end-to-end encrypted messages were coming to Gmail for business users, some people balked, noting it wasn’t true E2EE as the term is known in privacy and security circles. Others wondered precisely how it works under the hood. Here’s a description of what the new service does and doesn’t do, as well as some of the basic security that underpins it. When Google uses the term E2EE in this context, it means that an email is encrypted inside Chrome, Firefox, or jus
Keywords: alice certificate encrypted means mime
Find related items on AmazonPublished on: 2025-05-14 07:16:49
When Google announced Tuesday that end-to-end encrypted messages were coming to Gmail for business users, some people balked, noting it wasn’t true E2EE as the term is known in privacy and security circles. Others wondered precisely how it works under the hood. Here’s a description of what the new service does and doesn’t do, as well as some of the basic security that underpins it. When Google uses the term E2EE in this context, it means that an email is encrypted inside Chrome, Firefox, or jus
Keywords: alice certificate encrypted means mime
Find related items on AmazonPublished on: 2025-05-15 04:56:55
The Chrome Root Program launched in 2022 as part of Google’s ongoing commitment to upholding secure and reliable network connections in Chrome. We previously described how the Chrome Root Program keeps users safe, and described how the program is focused on promoting technologies and practices that strengthen the underlying security assurances provided by Transport Layer Security (TLS). Many of these initiatives are described on our forward looking, public roadmap named “Moving Forward, Together
Keywords: ca certificates chrome linting security
Find related items on AmazonPublished on: 2025-05-19 07:08:00
The big picture: Chrome is by far the most popular browser across various platforms and device types, with a market share of over 66 percent. Needless to say, every change Google makes to its proprietary browser inevitably influences all major players in the web ecosystem. Google recently announced two major initiatives aimed at enhancing web security, with the ultimate goal of making encryption and certificate management more reliable and resilient against cybercrime. These new features are pa
Keywords: browser certificate certificates google linting
Find related items on AmazonPublished on: 2025-06-01 20:30:04
Cybercriminals are abusing Microsoft's Trusted Signing platform to code-sign malware executables with short-lived three-day certificates. Threat actors have long sought after code-signing certificates as they can be used to sign malware to appear like they are from a legitimate company. Signed malware also has the advantage of potentially bypassing security filters that would normally block unsigned executables, or at least treat them with less suspicion. The holy grail for threat actors is t
Keywords: certificates malware microsoft service signing
Find related items on AmazonPublished on: 2025-06-02 21:30:04
Cybercriminals are abusing Microsoft's Trusted Signing platform to code-sign malware executables with short-lived three-day certificates. Threat actors have long sought after code-signing certificates as they can be used to sign malware to appear like they are from a legitimate company. Signed malware also has the advantage of potentially bypassing security filters that would normally block unsigned executables, or at least treat them with less suspicion. The holy grail for threat actors is t
Keywords: certificates malware microsoft service signing
Find related items on AmazonPublished on: 2025-06-08 06:14:00
ZDNET On March 14, 2025, a root certificate used to verify signed content and add-ons for Firefox and other Mozilla projects expired (note that Thunderbird does not do content verification, so that app will be unaffected). The expiration of this certificate will cause problems for Firefox users unless they update to version 128 (or ESR 115.13+). This includes versions for Linux, MacOS, Windows, Android, and iOS -- in other words, all platforms. Also: I've tried nearly every browser out there a
Keywords: browser certificate firefox root website
Find related items on AmazonPublished on: 2025-06-10 15:22:00
ZDNET On March 14, 2025, a root certificate used to verify signed content and add-ons for Firefox, Thunderbird, and other Mozilla projects expired. The expiration of this certificate will cause problems for Firefox users unless they update to version 128 (or ESR 115.13+). This includes versions for Linux, MacOS, Windows, Android, and iOS -- in other words, all platforms. Also: The Firefox I loved is gone - how to protect your privacy on it now Without updating, all features that rely on remot
Keywords: browser certificate firefox root website
Find related items on AmazonPublished on: 2025-06-22 14:32:45
Google recently killed the Chromecast brand, but the dongles live on—mostly. Owners of the second-generation Chromecast and Chromecast Audio have noticed this week that their beloved streaming gadgets are no longer working. It appears that Google configured the devices with a single 10-year certificate that has now expired, and updating it is no simple feat. Google is looking into a fix, and there's nothing you can do in the meantime. In fact, trying to fix this yourself might only make things w
Keywords: certificate chromecast devices fix google
Find related items on AmazonPublished on: 2025-06-28 15:28:01
A “distrust” is when a certification authority (CA) that issues HTTPS certificates to websites is removed from a root store because it is no longer trusted to issue certificates. This means certificates issued by that CA will be treated as invalid, likely causing certificate error interstitials in any browser that distrusted the CA. Distrusts can happen for security reasons, compliance reasons, or simply due to a lack of trust in the operators. In the past, the complexity and user impact of dist
Keywords: ca certificate certificates date time
Find related items on AmazonPublished on: 2025-07-04 13:52:59
Certificate Transparency (CT) has been one of the biggest advancements in web security, keeping users safe from threats such as certificate fraud and man-in-the-middle attacks. While CT has been around for over 11 years, enforcement has varied across browsers. Firefox is now enforcing Certificate Transparency on desktop platforms, taking a significant step towards a safer web. With this change, effective in version 135, Firefox will reject certificates that do not comply with CT requirements. T
Keywords: certificate ct firefox logs transparency
Find related items on AmazonPublished on: 2025-07-04 23:52:59
Certificate Transparency (CT) has been one of the biggest advancements in web security, keeping users safe from threats such as certificate fraud and man-in-the-middle attacks. While CT has been around for over 11 years, enforcement has varied across browsers. Firefox is now enforcing Certificate Transparency on desktop platforms, taking a significant step towards a safer web. With this change, effective in version 135, Firefox will reject certificates that do not comply with CT requirements. T
Keywords: certificate ct firefox logs transparency
Find related items on AmazonGo K’awiil is a project by nerdhub.co that curates technology news from a variety of trusted sources. We built this site because, although news aggregation is incredibly useful, many platforms are cluttered with intrusive ads and heavy JavaScript that can make mobile browsing a hassle. By hand-selecting our favorite tech news outlets, we’ve created a cleaner, more mobile-friendly experience.
Your privacy is important to us. Go K’awiil does not use analytics tools such as Facebook Pixel or Google Analytics. The only tracking occurs through affiliate links to amazon.com, which are tagged with our Amazon affiliate code, helping us earn a small commission.
We are not currently offering ad space. However, if you’re interested in advertising with us, please get in touch at [email protected] and we’ll be happy to review your submission.