As of this Thursday, Millions of cell phones Android And IPhone, As well as other devices, They will be left without internet access Because of the root certificate on September 30th Let’s encrypt Currently in use, The IdentTrust DST Root CA X3, It is necessary to check the security of the Internet connection.
Scott Helm, A researcher who specializes in computer security, is extensive On his webpage Act accordingly to cancel the expiration imposed by the users Certification Authority (That).
In addition, Helm mentioned Some devices affected Certificate has expired and includes the following Internet navigation components:
-
Windows Specifies an XP SP3
-
MacOS Less than 10.12.1
-
iOS Less than System 10 (iPhone 5 is the oldest model that can be upgraded to iOS 10).
-
Android Less than 7.1.1 (copies less than 2.3.6 will continue to work with ISRG root X1 certification with cross signal).
-
Mozilla Firefox Version less than 50.
-
Java Below version 8
-
Java Less than 7
Many users will be affected by this expiration
Users Expert warns that “all OpenSSSL 1.0.2 or earlier library releases affected by this expiration will be released on January 22, 2015 and last updated on December 20, 2019 as OpenSSL 1.0.2u” on their website.
In addition, Helm has compiled a list of possible infected devices, including:
-
Cell phone Blackbar, Versions less than 10.3.3
-
Operating system Jolla Sailfish OS, Less than 1.1.2.16
-
PS4 console with “firmware” Or less (previous generation consoles not updated to the latest firmware).
However, the entrepreneur and international spokesperson said, “Older Android devices do not check its expiration date when using the root certificate, so you can chain them up to the outdated root certificate, without any problems on those older devices.”
The expert explained that this is not the first time the Root CA certificate has expired. “I imagine it will follow the same course as the previous expiration. If your certificate chain anchored root certificate expires, it will most likely cause things to fail. This happened last year, on May 30, during CA’s outdoor rooting AddTrust Expired and took a lot of things. Such settings Roku, Stripe, Spreedly And many had problems, and they were not alone RedHat I got into trouble in this unfortunate incident, ”Helm said.
As for the new certificate, this is called ISRG Root X1 Cross signed, valid until September 30, 2024. According to Helmin, to restore secure internet connections, it is necessary to upgrade on older devices.
You may be interested
(Video) Apple sales predict demand for iPhone 5G
