Hoping to improve trust on the web, Google has a new tool to keep track of untrusted Certificate Authorities. Google’s has bolstered its toolset for keeping tabs on digital certificate suppliers that go rogue.
That toolset, a Google-designed digital certificate logging system known as Certificate Transparency (CT), can help protect Chrome users from the kind of mis-issued Secure Sockets Layer (SSL) certificates that Symantec generated last year for some Google domains.
Until now Google has had logs for CAs that are currently trusted by browsers, however it hasn’t had a log for untrusted root CAs. These include CAs whose trust has been revoked from root programs, and new CAs in the process of being granted trust.
Read more at ZDNet News