PKI Tutorials - Herong's Tutorial Examples - Version 2.04, by Dr. Herong Yang
Firefox 35 Displaying Certificate Error Page
This section provides a tutorial example showing that Firefox 35 fails to validate an HTTPS server certificate and displays a certificate error page.
Now I want to see how Firefox 35 behaves after I deleted the root certificate "VeriSign Class 3 Public Primary Certification Authority - G5".
1. Open Firefox 35 to visit "https://login.yahoo.com".
2. Firefox 35 returns with an untrusted connection error page:
3. Read the error message:
This Connection is Untrusted You have asked Firefox to connect securely to login.yahoo.com, but we can't confirm that your connection is secure. Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified. What Should I Do? If you usually connect to this site without problems, this error could mean that someone is trying to impersonate the site, and you shouldn't continue. Get me out of here! Technical Details I Understand the Risks
Firefox 35 fails to validate "login.yahoo.com" certificate as expected, because the root CA "VeriSign Class 3 Public Primary Certification Authority - G5" certificate has been deleted from Firefox.
Last update: 2015.
Table of Contents