Google slaps Symantec for issuing pretend net safety certificates
Not way back, Symantec revealed that it had issued bogus safety certificates for quite a few net domains, together with Google’s… and as you may guess, Google is not completely happy. The search agency is warning Symantec that, as of June 1st, any Symantec certificates which do not meet its transparency coverage might create warnings and “issues” in Google merchandise (learn: they will be deemed insecure). Furthermore, it is asking Symantec to elucidate why it did not catch a few of the pretend certificates, the causes behind every slip-up and the steps it’s going to take to set issues proper. Not surprisingly, Google does not need malicious websites posing as another person (particularly not Google) with a view to ship malware or perpetuate phishing scams.
For its half, Symantec claims that it issued a “small quantity” of check certificates by mistake, and revoked them earlier than notifying these affected. It additionally fired a handful of employees who reportedly weren’t following tips. There is a good probability this would possibly not occur once more. Nevertheless, the antivirus maker additionally seems to be downplaying the scope of the issue. Google notes that it discovered dodgy certificates after the primary time Symantec examined its conduct, and Symantec’s second audit caught over 2,600 of them — that does not sound small to us. Whereas the 2 corporations aren’t bitter enemies, it might be an extended whereas earlier than they get again into one another’s good books.
SOURCE: Google On-line Safety Weblog
MORE COVERAGE: Symantec
Tags: certificates google web safety software program symantec tsl net