When Google Chrome 41 is released, it will treat certificate chains using SHA-1 which are valid past January 1, 2017 as affirmatively insecure.


The release date of Chrome 41 is not definitive, but it is expected to be about 6 weeks after Chrome 40. As Chrome 40 was released on January 23, 2015, we expect Chrome 41 to be released about March 6, 2015.

We highly recommend that all users of SHA-1 signed SSL certificates which expire after 2015 to renew these certificates signed with SHA-2. The result will remove warning message to the users of your website. It will also prepare your site for the full SHA-1 deprecation scheduled for 2017.

Please visit our website for more information on migration from SHA-1 to SHA-2.

Bruce Morton

Bruce Morton

Bruce Morton has worked in the public key infrastructure and digital certificate industry for more than 15 years and has focused on SSL and other publicly trusted certificates since 2005. He has been an active member of the CA/Browser Forum that released guidelines for extended validation (EV) certificates and Baseline Requirements for SSL certificates. Bruce oversees the governance and compliance of Entrust’s publicly trusted PKI.