SIGNIFLOW

Discover our signature platform: sign and request signature for your PDFs in a fex clicks!

JOIN OUR AFFILIATE NETWORK

Join our affiliate network
and become a local SSL expert
Learn more about our program

PRODUCTS TO DISCOVER

SSL certificates Invoice signature eIDAS certificates Signature software

Menu
picture of tbs certificates
picture of tbs certificates
Certificates
ALL CERTIFICATES
SSL Extended Validation SSL Standard RGS certificates eIDAS certificates SSL ECC SSL wildcard SSL Multiple sites / SAN Quick and Dirty SSL
Specific certificates VMC certificates
E-signature Strong authentication S/MIME certificates
Test certificates PKI Solutions Trust Seals
SigniFlow: the platform to sign and request signature for your documents
Signature software
Our products range
TBS X509 DigiCert Thawte Sectigo GlobalSign GeoTrust Certigna ChamberSign SigniFlow Harica
Partners
Client login Customer accounts Open an account
Support
FAQ SHA256: Browsers' compatibility ECC: Browsers' compatibility
Focus
Invoices dematerialization
We now provide solutions compliant with RGS** and eIDAS qualified standards for invoices signature and time stamping. Further information


20151218 - Microsoft could remove Certigna root from browsers because of a misplaced document

We learnt today that Microsoft might remove Certigna root from its tools, at an undefined date during January 2016.

Updated on 18 Dec at 7pm: in fact Microsoft would have considered a bit quickly Certigna inactive after being unable to locate a legal document. Situation should be clarified in the next few days.

Updated on 22 Dec at 9am: Certigna confirms that it was, indeed, a misunderstanding. Certigna root will remain on Microsoft tools.

Why?

The precise reasons of this decisions are this are not known but Microsoft indicates:

"This past spring, we began engaging with Certificate Authorities (CA) to solicit feedback and talk about upcoming changes to our Trusted Root Certificate Program. Among other things, the changes included more stringent technical and auditing requirements. The final program changes were published in June 2015. (...) We identified a few partners who will no longer participate in the program, either because they have chosen to leave voluntarily or because they will not be in compliance with the new requirements."

And adds:

"If you use a certificate that was issued by one of these companies, we strongly recommend that you obtain a replacement certificate from another program provider."

Which products are concerned?

Only Certigna SSL RGS* certificates are impacted by this news.

What might be the consequences?

Should the root be removed from Microsoft products, the certificates chained to it would trigger security alerts. Web users would then be invited not to trust the web site presenting such a certificate for safety matters. The impact on those sites traffic would be important.

And what about Certigna?

The Authority declares:

"After an exchange with Microsoft, we confirm that it is a misunderstanding that is currently sorted out. Certigna will let you know when it is solved as soon as possible.

All our products and services can be used normally."

Useful links

* Extract of the article published by Microsoft