I am running Internet Explorer 5.1 on a Mac. I have numerous sites that I frequent (banks, credit card, personal pension info, not to mention all the sites such as Amazon where I purchase items. Needless to say, these must be secure sites.
I was ordering items from a site the other day, and the following message appeared on my screen:
UNABLE TO ESTABLISH A SECURE CONNECTION TO (site URL) THERE IS A PROBLEM WITH THE SECURITY CERTIFICATE FROM THAT SITE. THE IDENTITY CERTIFICATE IS UNKNOWN.
I called the site on the phone (and I have used this site continuously for the last three years) and was told that I would have to change my security settings. That said, I went to the help file, and read the following:
When you visit a secure Web site, the Web site automatically sends Internet Explorer its “certificate.” A certificate guarantees the security of a Web site. Certificates also ensure that no other Web site can assume the identity of the secure site, so you can feel confident that credit card numbers and other personal information you send over the Internet go to the owner of the certificate— and to no one else.
That reads to me that the site sends the certificate to my computer, no? I now went to all my other sites, and found the same warning on each and every one of them. I tried the following, I deleted all the certificates and reverted to defaults (the same certificates reappeared) I deleted them again, and with a blank screen, I attempted to access a secure site, in the hopes that the site would send an updated certificate, but, no luck. Where do I go from here? Anybody?
.
Did you recently change browsers or something? I find it suspicious that all of the sites you use suddenly are having trouble issuing you valid certificates…
A bit of research regarding Macs and security certs yielded this:
You might be able to solve the problem by upgrading to a newer version of IE.
Security Certificates can be a real pain, if you have ever set one up, you know this. Here’s the basics of the problem:
Ceritificates are granted by different companies (Verisign, Entrst, Geotrust, Comodo, etc). It is these grantors’ responsibility to verify your company is who you say it is, and things like address, credit card info, and other information is used to validate this. When you purchase a SSL certificate, they have effectively verified your company.
The problem arises in that the web browser ships with a specific list of certificate providers that the browser trusts. So if you are using an old Windows 95 system, and never updated your browser, any new SSL provider that has come along since will not be automatically trusted. Newer browsers, in general, trust more certificate authors.
So every SSL provider works with a certain percentage of web browsers. Most work with around 99% of web browsers, but it is very hard to be trusted by every browser known to man.