Skip to main content

From time-to-time, IdenTrust will provide information that may interest you or have an impact on the certificate program you use. Check back often for interesting updates.


TLS/SSL certificates for U.S. Government trust

The Federal PKI Policy Authority (FPKIPA) has communicated a change that affects the way that browsers handle TLS/SSL certificates.  The FPKIPA has requested that the Federal Common Root be removed from all browsers.  This means that government-trusted certificates issued under a Federal Common Root chain, such as those issued under the IdenTrust ACES or DoD ECA programs, are no longer automatically trusted in standard browsers (public-trust).  

Learn more about FPKIPA announcement and recommendations regarding this change.

Learn more about the difference between government-trusted and public-trusted TLS/SSL certificates


TLS/SSL Security Update

Following up with our Enhanced Security Notification, and in line with industry security driven trends, by Q2/2020 IdenTrust is planning to discontinue support for TLS 1.1 and only accept communications via TLS 1.2 and the recently approved TLS 1.3 standard communications protocol

Please let us know via Support@IdenTrust.com if you are interested in testing the new TLS 1.3 or if you have any concerns about the TLS 1.1 deprecation; please add “TLS 1.3 Testing” or “TLS 1.1 Concerns” to subject line.