STE WILLIAMS

Microsoft is cutting the ranks of its Trusted Root Certificate partners in hopes of improving the security of Windows applications.

The Redmond giant said that it would be dropping 20 currently trusted Certificate Authorities (CAs), leaving the applications and sites signed with those certificates untrusted and causing their users to receive warnings when launched.

According to Microsoft, the elimination of the CAs came after the company decided to implement a stricter set of audits and requirements for the Trusted Root Certificate program in June of this year.

With the more stringent requirements now having been in place for several months, Microsoft has begun culling the ranks to remove those who can’t, or won’t, meet its security requirements.

“Through this effort, we identified a few partners who will no longer participate in the program, either because they have chosen to leave voluntarily or because they will not be in compliance with the new requirements,” wrote Microsoft enterprise and security group program manager Aaron Kornblum.

“We encourage all owners of digital certificates currently trusted by Microsoft to review the list and take action as necessary.”

The complete list, via Microsoft:

Following the removal of the CAs in January, certificates from the listed CAs will no longer be valid. Owners of the revoked certificates are being advised by Microsoft to get new certificates from one of the remaining Trusted CAs in order to obtain new, valid certificates. ®

Sponsored:
IT evolution to a hybrid enterprise

Article source: http://go.theregister.com/feed/www.theregister.co.uk/2015/12/17/microsoft_trusted_root_certificate_cull/