ExtremeTech

Google discovers new security holes in SSL -- is the entire system fundamentally flawed?

Google has discovered a flaw in an intermediate certificate authority and revoked its permissions, but the problem points to root issues with the SSL system. Can they be fixed? Google wants to try.
PC World

French government sub-CA issues unauthorized certificates for Google domains

An intermediate certificate authority (CA) registered to the French Ministry of Finance issued rogue certificates for several Google domains without authorization. Google detected the use of the ...
PC World

To punish Symantec, Google may distrust a third of the web’s SSL certificates

Google is considering a harsh punishment for repeated incidents in which Symantec or its certificate resellers improperly issued SSL certificates. A proposed plan is to force the company to replace ...
Threat Post

Google to Fully Distrust WoSign/StartCom SSL Certs in Chrome 61

Google has put websites signed with WoSign/StartCom SSL certificates on notice that it will no longer trust certs from the Chinese CA starting in Chrome 61. Websites that are still using digital ...
Search Engine Roundtable

New Google Search Console Notifications For SSL/TLS Mismatch Errors

Google is now sending out new Google Search Console messages for SSL/TLS certificate does not include domain name, or HTTPS mismatch errors. The first one was spotted and posted by Casey Markee on ...
Bleeping Computer

Google's .App Domains With Baked-In HTTPS Are Now Open for General Registration

Starting last week, on May 8, Google has opened the .app top-level domain (TLD) to the general public, allowing anyone to register their desired .app domain name. As its name implies, the domain is ...