The Indian Controller of Certifying Authorities (India CCA) has launched an investigation into the issue of unauthorized digital certificates to Google by the National Informatics Center Certifying Authority. Such a certificate could have been used to trick a service into thinking that a fake domain was legitimate.
In a blog post on its security blog, Google has stated that the unauthorized certificates were included in Microsoft's Root Store, meaning that a majority of Windows programs that use SSL would trust these certificates.
Exclusions include Firefox, which uses its own root store, and Chrome, which uses additional TLS/SSL security measures to safeguard users from unauthorized certificates. Furthermore, Google blocked these certificates in Chrome with a CRLSet push. Google also clarified that Chrome on other platforms, which include Chrome OS, Android, iOS and OS X was not affected as the Indian CCA certificates are not included in these root stores.
Google was in contact with the India CCA, which rolled out a subsequent CRLSet push to revoke the NIC certificates, rendering all NIC domains inaccessible. The NICAA has since ceased issuing digital certificates for the time being, and has the following message on its website:
Due to technical reasons, NICCA is not issuing certificates as of now. All operations have been stopped for some time and are not expected to resume soon. DSC application forms will not be accepted till operations are resumed and further instructions will be issued thereafter. Inconvenience caused is regretted.
Source: Google
Have you listened to this week's Android Central Podcast?
Every week, the Android Central Podcast brings you the latest tech news, analysis and hot takes, with familiar co-hosts and special guests.
We may earn a commission for purchases using our links. Learn more.
One of the best Windows laptops is $550 right now — and stock is limited
Buying a laptop isn't an easy decision, but it's one that's slightly easier on weeks like this — on Black Friday. The Dell XPS 13 2-in-1 has been heralded as one of the best laptops on the market by practically every site that ranks these kinds of things, ourselves included, and there's a brand new reason to pick it up. Today only, the XPS 13 2-in-1 with Intel 10th Gen CPUs are up to $...
Why it’s worth spending more on faster SD cards on Black Friday
To make the most of any camera, whether it be the one on your phone or one in a security cam or even a drone, you'll want to buy a fast SD card. Here's why.
Cards against Humanity and Exploding Kittens on sale for Black Friday
Some of the best card games and board games are on sale today for Black Friday. If you don't have them already, you should definitely check out Cards Against Humanity and Exploding Kittens.
These are the best cases for your brand new Pixel 4a 5G!
The Pixel 4a 5G looks boring in Just Black, but we can fix that! These cases are fun, fashionable, functional, and ready to carry your Pixel 4a 5G into the future.