Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
What certificate authorities do the browsers trust by default? Do these differ between internet explorer, firefox, chrome, safari…. and is there somewhere you can see this? Or is it simply if it is a certificate authority browsers trust it and if it self signed, browsers don’t? If thats the case why do some companies provide free ssl certificates?
You should be able to find the policies and members lists for Windows/IE from the following links:
In addition, here are some links for other browsers/OSes:
This being said, these are for the default lists provided with the software. It’s usually possible for system administrators to change this list (for adding new CA certificates in a corporate environment, for example). In IE, if you go in the internet options, you should be able to check the list of root CAs and intermediate CAs. Other browsers also have similar options.
A slight exception to this is for EV certificates, where the signatures are hard-coded in the browsers for them to be recognized as EV CAs (although I would think the CA also needs to be in the trusted list, not just hard-coded for being EV enabled).