Articles in Root

Change to Public Trust Status of PKIoverheid / Staat der Nederlanden Root CA - G3

Solution

The Government of The Netherlands will make software CA trust store changes to a PKIoverheid Root that may affect some end-entity certificates issued by DigiCert+QuoVadis.

 

AFFECTED SERVICES

QuoVadis has been notified that Logius, on behalf of the Government of The Netherlands, will request changes to be made to the public trust status of the Staat der Nederlanden Root CA - G3 and you are being notified because you have certificates that chain to the affected root certificate.

 

These changes will therefore affect the following QuoVadis operated PKIoverheid CAs in that hierarchy.

  • QuoVadis PKIoverheid Organisatie Services CA - G3
  • QuoVadis PKIoverheid Organisatie Persoon CA - G3
  • QuoVadis PKIoverheid Organisatie Server CA - G3 (inactive)

 

IMPACT SUMMARY

It is important to note that these software trust store changes do not affect the trustworthiness of the certificates in the context of PKIoverheid, but they may affect their trust security indicators in some software such as browsers.

 

Given the diversity of root trust store use cases, Logius is not able to predict the impact across individual end-entity certificates. We therefore recommend that you review your certificates and immediately make the needed changes, if any. We note that the QuoVadis-issued certificates under these root chains are intended for signing rather than for use in browsers. If you have used these certificates in an Adobe Acrobat environment, there will be no change in trust status of the signature.

 

See more information from Logius about the changes here: https://logius.nl/diensten/pkioverheid/pkioverheid-update/certificaat-vervangingsplan-veelgestelde-vragen

 

FURTHER QUESTIONS

If you have questions, please contact nl.support@digicert.com or Support at +31 (0) 30 2324320.