"The global community does not trust Russian
Posted: Mon Jan 20, 2025 4:54 am
An SSL certificate encrypts data transmitted between the client device and the server. This certificate must be verified by either the operating system or the browser.
There is a global organization called CA/Browser Forum that controls the certificate market. It decides which certification authorities can be trusted. Russia has been trying unsuccessfully to get recognition from this organization for the last 10 years.
As Andrey Kuzmichev luxembourg whatsapp number database explained, Russia's efforts are futile because the CA/Browser Forum is funded by American-linked companies such as Google and Amazon; therefore, Russian certificates are not built into all Windows operating systems and key browsers.
certificates, because it believes that if Russian special services have access to the root certificate, they can read all traffic. At the same time, access by American special services to the root certificates of American certification authorities is considered normal," explained Andrey Kuzmichev.
Companies that issue certificates are called certification authorities. There are currently two of them in Russia: the Internet Technical Center, with which RU-CENTER is integrated for the automatic issuance of certificates, and the National Certification Authority, subordinate to the Ministry of Digital Development.
"When there is no root certificate, when you try to access such a site, a warning appears in the browser that this site is untrusted. The problem with Russian certification authorities is that they de facto provide encryption, but in practice, users are faced with the fact that their browser is not sure that these strange Russian certificates can be trusted. Almost all Russian sites are encrypted with American certificates. The most popular of them is non-commercial - Let's Encrypt, a project of Google, which issues free certificates. Of the commercial ones, this is the company GlobalSign, whose site is under the jurisdiction of Japan," explained Andrey Kuzmichev.
Is intervention of the regulator necessary?
Andrey Savelyev, CEO of OOO Domeny.RF (Rf.ru), believes that certificates issued in Russia were unclaimed due to compatibility issues with browsers, especially with the American product Google Chrome. In his opinion, there may have been shortcomings on the part of Russian developers.
Andrey Savelyev emphasized that releasing a Russian certificate to the market in this form was unacceptable - it is necessary to first test and create a quality product that would work with all browsers and applications.
There is a global organization called CA/Browser Forum that controls the certificate market. It decides which certification authorities can be trusted. Russia has been trying unsuccessfully to get recognition from this organization for the last 10 years.
As Andrey Kuzmichev luxembourg whatsapp number database explained, Russia's efforts are futile because the CA/Browser Forum is funded by American-linked companies such as Google and Amazon; therefore, Russian certificates are not built into all Windows operating systems and key browsers.
certificates, because it believes that if Russian special services have access to the root certificate, they can read all traffic. At the same time, access by American special services to the root certificates of American certification authorities is considered normal," explained Andrey Kuzmichev.
Companies that issue certificates are called certification authorities. There are currently two of them in Russia: the Internet Technical Center, with which RU-CENTER is integrated for the automatic issuance of certificates, and the National Certification Authority, subordinate to the Ministry of Digital Development.
"When there is no root certificate, when you try to access such a site, a warning appears in the browser that this site is untrusted. The problem with Russian certification authorities is that they de facto provide encryption, but in practice, users are faced with the fact that their browser is not sure that these strange Russian certificates can be trusted. Almost all Russian sites are encrypted with American certificates. The most popular of them is non-commercial - Let's Encrypt, a project of Google, which issues free certificates. Of the commercial ones, this is the company GlobalSign, whose site is under the jurisdiction of Japan," explained Andrey Kuzmichev.
Is intervention of the regulator necessary?
Andrey Savelyev, CEO of OOO Domeny.RF (Rf.ru), believes that certificates issued in Russia were unclaimed due to compatibility issues with browsers, especially with the American product Google Chrome. In his opinion, there may have been shortcomings on the part of Russian developers.
Andrey Savelyev emphasized that releasing a Russian certificate to the market in this form was unacceptable - it is necessary to first test and create a quality product that would work with all browsers and applications.