While everyoneโ€™s talking about the software updates on the surface internet, thereโ€™s something about to expire in the background, which can cut off outdated Android users from the internet soon.

Letโ€™s Encrypt, a free certificate authority thatโ€™s serving over 30% of the worldโ€™s web domains with its TLS certificates, will have its partnership expired with IdenTrust, making outdated Android phones useless soon.

Android Phones Running v7.1 or Older at Risk

Users whoโ€™re much into browsing may notice the green padlock icon just beside the domain. This signifies that the connection between the userโ€™s device and the accessing domain is encrypted and secured throughout the session. This is important as any sensitive details entered into the domainโ€™s page shouldnโ€™t be seen by anyone else.

Making such connections secure are the organizations like Letโ€™s Encrypt, which started about five years ago and partnered with IdenTrust, a Certificate Authority (CA), to cross sign its root certificates, thus authenticating the connection.

Letโ€™s Encrypt applied for installing its ISRG Root X1 certificate in most OS like macOS, Android, Windows, Linux, etc., verified by the IdenTrustโ€™s DST Root X3 root.

And since the partnership between these two is about to expire in September next year, Letโ€™s Encrypt says that devices using its root certificate will be cross-signed by any CA later. This makes all the web domains, nearly 30% of the worldโ€™s domains, inaccessible from users browsers. Letโ€™s Encrypt mentioned that devices running on Android version 7.1 and older will not be supported then.

While itโ€™s now able to run independently with its own root certificate, only the newer devices (Android 7.2 and above) will be supported.

It also mentioned a workaround for using the Mozilla Firefox browser, which has its own root certificates installed when it is set and supports Android 5.0 and later.

Related Article

LEAVE A REPLY

Please enter your comment!
Please enter your name here