Background
Recently, DigiCert, an industry-leading provider of scalable encryption solutions for the web and enterprise, acquired Symantec's Website security and related PKI (Public Key Infrastructure) solutions.
These solutions are critical in safeguarding businesses from advanced and evolving cyber security threats currently infiltrating the web. Customers can now benefit from the experience of DigiCert, a company that is solely focused on being the industry leader in identity and encryption solutions. Symantec and DigiCert share a deep commitment to customer service. Ensuring a smooth transition for everyone involved in this industry changeover is a top priority for both parties.
DOMAINScanada.ca Inc. is committed to helping it's customers through this industry development. We encourage our customers to reach out to us with any questions or concerns regarding the creation or deployment of the updated certificates that will need to be generated.
Symantec certificates are also branded as GeoTrust, Thawte and RapidSSL.
How Does This Affect Me?
There are two dates to keep in mind - March 15, 2018 and September 13, 2018 - details of which will be outlined below.
Major web browsers will begin to distrust Symantec, GeoTrust, Thawte and RapidSSL security certificates issued before December 1, 2017 in the near future. To facilitate the industry changeover, affected certificates must be reissued in order to comply with the new security requirements. The date on which your certificate was issued indicates the timeline in which you have to reissue your certificate to ensure your customers retain uninterrupted access to your protected resources.
This process is entirely free of charge and DOMAINScanada.ca Inc. is available, as always, to answer any questions you have along the way.
On or around March 15, 2018, Google Chrome and Mozilla Firefox will show a warning for sites secured with Symantec's existing PKI infrastructure issued before June, 1, 2016. All encryption features of the browsers will function normally at this point and no data is at risk. Your visitors will be disrupted by a warning from the browser. This date coincides with the release of Chrome 66 Beta and Firefox version 60.
On or around September 13, 2018, Google Chrome and Mozilla Firefox will show a warning for any site secured with Symantec's existing PKI infrastructure. All encryption features of the browsers will function normally at this point and no data is at risk. Your visitors will be disrupted by a warning from the browser. This date coincides with the release of Chrome 70 Beta and Firefox version 63.
Symantec certificates (including GeoTrust, Thawte and RapidSSL) issued before December 1, 2017 will be completely distrusted by Chrome and Firefox by the end of 2018.
There is no need to reissue any SSL certificates issued after December 1, 2017.
How do I know if I'm affected?
You can check to see if you're affected by using the certificate management tools on our website. Please log in to your DOMAINScanada.ca Inc. account and click the word "Services" in the red navigation bar close to the top of the page. Locate your active SSL certificates and click on "View Details" for each one. If your certificate needs to be reissued, there will be a notice in the "Vendor Status" field. See the below images for example.
How do I reissue my certificate?
Once you have identified a particular certificate that needs to be reissued, click the "Re-issue Certificate" button found at the bottom of the certificate details page. All of the original values from your order should automatically be filled in for you. From here on, the procedure will go forward identical to if you were ordering a brand new certificate. The regenerated certificate will have the same expiry date as your original.If you have any questions, please contact us.