As a result of additional checks, the CA/B Forum found that section 3.2.2.8 of the current rules for issuing SSL certificates (Baseline Requirements) contains security holes related to CAA verification.

The CA/B Forum recently approved Ballot SC45 to address security holes in methods 3.2.2.4.6, 3.2.2.4.18 and 3.2.2.4.19 of the Baseline Requirements*.

Starting from 27 May 2021, DigiCert Code Signing certificates will require 3072-bit RSA keys or higher to issue Code Signing certificates.

The CA/B Forum, the regulator of the SSL certificates industry, has approved several changes associated with domain validation policy. The changes apply to all new certificates, as well as re-issues and renewals of old certificates. SSL/TLS certificates that have already been issued will continue to function (you do not need to change them).

With the latest update, Google Chrome is faster and more secure. Now HTTPS will be used by default to open pages instead of HTTP. Chrome developers have been pushing all site owners to switch to HTTPS.