Skip to main content

From time-to-time, IdenTrust will provide information that may interest you or have an impact on the certificate program you use. Check back often for interesting updates.

TLS/SSL certificates for U.S. Government trust

The Federal PKI Policy Authority (FPKIPA) has communicated a change that affects the way that browsers handle TLS/SSL certificates.  The FPKIPA has requested that the Federal Common Root be removed from all browsers.  This means that government-trusted certificates issued under a Federal Common Root chain, such as those issued under the IdenTrust ACES or DoD ECA programs, are no longer automatically trusted in standard browsers (public-trust).  

Learn more about FPKIPA announcement and recommendations regarding this change.

Learn more about the difference between government-trusted and public-trusted TLS/SSL certificates

TLS/SSL Security Update

Following up with our 2017 Enhanced Security Notification, and in line with ecosystem security driven trends, effective June 14, 2020 IdenTrust will only accept communications to its systems via TLS 1.2 or higher protocols, such as the recently approved TLS 1.3 standard communications protocol.

Please let us know via if you have any concerns about the supported TLS/SSL communications protocols.

Browser's TLS/SSL Notifications: