Google Chrome is removing default trust for TLS certificates issued by Chunghwa Telecom and Netlock due to repeated compliance failures and unmet improvement commitments. Starting Chrome 139 (approximately August 1, 2025), certificates from these CAs with an earliest Signed Certificate Timestamp after July 31, 2025 will trigger
Table of contents
Why is Chrome taking action?When will this action happen?What is the user impact of this action?How can a website operator tell if their website is affected?What does an affected website operator do?Can I test these changes before they take effect?I use affected certificates for my internal enterprise network, do I need to do anything?How do enterprises add a CA as locally-trusted?What about other Google products?Sort: