AnsweredAssumed Answered

ComSign CA is not in trust store but is trusted by Internet Explorer and Chrome

Question asked by Zeev Tarantov on Nov 12, 2014
Latest reply on Nov 14, 2014 by Ivan Ristić

Example of affected site: https://ecom.gov.il/counter/alternative/tabuNesach/Homepage.aspx?counter=10&catalog=1&category=tabuNesach&language=he

(it is a form to buy a pdf with land registration records)

The result of the test is: https://www.ssllabs.com/ssltest/analyze.html?d=ecom.gov.il

Path #1: Not trusted (path does not chain to a trusted anchor)

the Root CA's key is

 

Extra download

Not in trust store

 

ComSign Global Root CA 

SHA1: ae3b31bf8fd891079cf1df34cbce6e70d37fb5b0

RSA 4096 bits / SHA256withRSA

 

and indeed Firefox does not trust that CA (yet). But MSIE and Chrome do.

Can the test more accurately report that the site would work for the majority of users?

Outcomes