Japanese certification authority GlobalSign has started the second wave of mass revocation of TLS certificates for Russian domains of sanctioned companies. The new notification affected resources of Rosneft, Gazprombank, Alrosa, VEB.RF, Positive Technologies, OAK, and others – a total of about 310 domain names from 44 organizations.
The revocation began on June 18 at 17:15 Moscow time and is a continuation of the first wave that occurred a few days earlier. At that time, tens of thousands of domains, including subdomains, were under threat, potentially increasing the scale to hundreds of thousands of certificates.
TLS certificates provide HTTPS encryption and confirm the authenticity of a website. Their revocation means that browsers – Chrome, Safari, and Firefox – will start blocking access or displaying warnings about an insecure connection.
The reason for the mass revocation was new requirements from the international consortium CA/Browser Forum, which obliged certification authorities to check clients against OFAC, BIS, and European regulatory sanction lists.
Russian registrars have already begun an emergency transition to domestic certificates and warn of the risk of further waves, including a possible expansion of restrictions from other global centers, including Let's Encrypt.
Read more on the topic:
- Red warning instead of login: MAKS website may lose browser trust
- Runet loses digital "passports": GlobalSign began revoking certificates from Russian companies
- App Store lost "Luna": browser with Ministry of Digital Development certificates is no longer available

Комментарии