Online Security

Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors

firefox https security warning

Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections.

Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages before it reaches the web browser.

To achieve this, security software replaces websites’ TLS certificates with their own digital certificates issued by any trusted Certificate Authorities (CAs).

Since Mozilla only trusts those CAs that are listed in its own root store, the antivirus products relying on other trusted CAs provided by the operating system (OS) are not allowed to intercept HTTPS connections on Firefox.

In recent months, this limitation continually crashed HTTPS pages for many Firefox users showing them SEC_ERROR_UNKNOWN_ISSUER, MOZILLA_PKIX_ERROR_MITM_DETECTED or ERROR_SELF_SIGNED_CERT error codes when their antivirus attempts to intercept an HTTPS-enabled page by adding its root certificate to Firefox store.

To let users easily fix this issue, starting with Firefox 68, the browser will now automatically enable the…

http://feedproxy.google.com/~r/TheHackersNews/~3/zPfr95aOvyg/firefox-https-security.html

Have a comment? Type it below!

Back to top button
Close

Adblock Detected

Hi, kindly remove your adblocker to view this page.