If you are scrolling through News feed on older Android phones, it may be time to upgrade. One of the world’s top certification bodies warns that phones running versions of Android before 7.1.1 Nougat will be cut off from the bulk of the secure web as of 2021, Android police report saturday.
The not-for-profit organization Let’s Encrypt is partnered with Mozilla said its partnership with IdenTrust certification body will expire in September 1 year 2021. Since there are no plans to renew its cross-signing agreement, Let’s Encrypt plans to stop by default cross-signing for IdenTrust’s root certificate, DST Root X3, starting Jan. 11 when the organization switches to using only. Root its own ISRG Root X1.
That’s a pretty important change considering that as much as a third All web domains rely on the institution’s credentials. But since older software won’t trust Let’s Encrypt’s root certificate, this could “cause some compatibility woes,” lead developer Jacob Hoffman-Andrews said in a blog post Friday.
“Some software that hasn’t been updated since 2016 (our root period is accepted for many root programs) still doesn’t trust our root certificate, the ISRG Root X1,” he said. Most notably, this includes versions of Android prior to 7.1.1. That means older Android versions will no longer trust Let’s Encrypt-issued certificates.
The only workaround for these users is to install Firefox as it relies on its own certificate store that includes the Let’s Encrypt root, though that won’t keep apps from crashing or guaranteeing functionality. functionality outside of your browser.
Let’s Encrypt notes that about 34% of Android devices are running versions older than 7.1 based on data from Google’s Android development suite. That means millions of users are likely to be cut off from much of the secure web starting in 2021. In short, if you’ve been paying any attention to any of these. new phone This holiday season, it may be worth spending if only for later headache relief.