{"id":732,"date":"2014-10-16T13:45:44","date_gmt":"2014-10-16T11:45:44","guid":{"rendered":"https:\/\/www.psw-group.de\/support\/?p=85"},"modified":"2025-11-26T12:29:19","modified_gmt":"2025-11-26T11:29:19","slug":"kriegen-die-neuen-sha-2-zertifikate-eine-neue-zertifizierungskette","status":"publish","type":"post","link":"https:\/\/www.psw-group.de\/support\/kriegen-die-neuen-sha-2-zertifikate-eine-neue-zertifizierungskette\/","title":{"rendered":"Kriegen die neuen SHA-2 Zertifikate eine neue Zertifizierungskette?"},"content":{"rendered":"<p>Ja, die Zertifizierungsstellen stellen die Zertifizierungskette nach und nach auf SHA-2 um. Wie Sie in der Tabelle sehen werden, sind <a href=\"https:\/\/www.psw-group.de\/ssl-zertifikate\/\" target=\"_blank\" rel=\"noopener\">SSL-Zertifikate<\/a> und Zwischenzertifikate SHA-2, jedoch sind einige\u00a0Zertifikate von SHA-1 Root-Zertifikaten ausgestellt. In Bezug auf die \u00c4nderungen in Chrome 39 sollten keine Probleme auftreten, da Chrome nicht bis zum Root-Zertifikat \u00fcberpr\u00fcft.<\/p>\n<h2>Comodo Zertifikate<\/h2>\n<p>Bei allen\u00a0Comodo\u00a0Produkten ist die komplette Zertifikatskette\u00a0SHA-2. Auf einigen Plattformen ist das Comodo\u00a0SHA-2 Root-Zertifikat\u00a0noch nicht direkt im Stammspeicher enthalten, deshalb wird auf diesen Plattformen die Zertifikats-Kette mit dem Zertifikat AddTrust-Root abgeschlossen.<\/p>\n<p>Zertifikatskette bei Plattformen, die das\u00a0Comodo\u00a0SHA-2 Root-Zertifikat enthalten:<br \/>\n<strong>COMODO SHA-2 Root-&gt; COMODO SHA-2 Intermediate\u00a0CA-&gt; SHA-2 End-Punkt-Zertifikat<\/strong><\/p>\n<p>Zertifikatskette bei Plattformen, die das\u00a0Comodo\u00a0SHA-2 Root-Zertifikat <strong>nicht<\/strong> enthalten:<br \/>\n<strong>AddTrust-&gt; COMODO SHA-2 Root-&gt; COMODO SHA-2 Intermediate\u00a0CA-&gt; SHA-2 End-Punkt-Zertifikat<\/strong><\/p>\n<div class=\"table-responsive\">\n<table class=\"table table-striped table-hover\">\n<tbody>\n<tr>\n<th>Produkt<\/th>\n<th>\u00a0<strong>Encryption<\/strong><\/th>\n<th>\u00a0<strong>Hash\u00a0End-Punkt<\/strong><\/th>\n<th>\u00a0<strong>Intermediate<\/strong><\/th>\n<th>\u00a0<strong>Cross-Root<\/strong><\/th>\n<th>Root<\/th>\n<\/tr>\n<tr>\n<td><\/td>\n<td><\/td>\n<td><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/COMODO-RSA-Extended-Validation-Secure-Server-CA.txt\"><strong>COMODO RSA Extended Validation SecureServerCA<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/COMODO-RSA-Certification-Authority.txt\"><strong>COMODO RSA AddTrustCA Cross-Root<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/addtrustexternalcaroot.txt\"><strong>AddTrust Root<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>Comodo EV<\/td>\n<td>RSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>SHA-384<\/td>\n<td>SHA-384<\/td>\n<td>SHA-1<\/td>\n<\/tr>\n<tr>\n<td><\/td>\n<td><\/td>\n<td><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/COMODO-RSA-Organization-Validation-Secure-Server-CA.txt\"><strong>COMODO RSA Organization Validation SecureServerCA<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/COMODO-RSA-Certification-Authority.txt\"><strong>COMODO RSA AddTrustCA Cross-Root<\/strong><\/a><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/addtrustexternalcaroot.txt\">AddTrust Root<\/a><\/strong><\/td>\n<\/tr>\n<tr>\n<td>InstantSSL<\/td>\n<td>RSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>SHA-384<\/td>\n<td>\u00a0SHA-384<\/td>\n<td>SHA-1<\/td>\n<\/tr>\n<tr>\n<td>Premium SSL Wildcard<\/td>\n<td>RSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>SHA-384<\/td>\n<td>\u00a0SHA-384<\/td>\n<td>SHA-1<\/td>\n<\/tr>\n<tr>\n<td>Comodo UCC<\/td>\n<td>RSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-384<\/td>\n<td>SHA-384<\/td>\n<td>SHA-1<\/td>\n<\/tr>\n<tr>\n<td><\/td>\n<td><\/td>\n<td><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/comodorsadomainvalidationsecureserverca.txt\" target=\"_blank\" rel=\"noopener\"><strong>COMODO RSA DomainValidation SecureServerCA<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/COMODO-RSA-Certification-Authority.txt\"><strong>COMODO RSA AddTrustCA Cross-Root<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/addtrustexternalcaroot.txt\"><strong>AddTrust Root<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>PositiveSSL<\/td>\n<td>RSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>SHA-384<\/td>\n<td>SHA-384<\/td>\n<td>SHA-1<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<p>&nbsp;<\/p>\n<hr \/>\n<h2>GlobalSign Zertifikate<\/h2>\n<div class=\"table-responsive\">\n<table class=\"table table-striped table-hover\">\n<tbody>\n<tr>\n<th>Produkt<\/th>\n<th><strong>Encryption<\/strong><\/th>\n<th><strong>Hash\u00a0End-Punkt<\/strong><\/th>\n<th><strong>Intermediate<\/strong><\/th>\n<th>Root<\/th>\n<\/tr>\n<tr>\n<td>AlphaSSL<\/td>\n<td>\u00a0RSA<\/td>\n<td>SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/AlphaSSL-CA-SHA256-G2.txt\"><strong>AlphaSSL CA &#8211; SHA256 &#8211; G2 (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GlobalSign-Root-R1.txt\"><strong>GlobalSign Root R1 (SHA-1)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>GlobalSign DV<\/td>\n<td>RSA<\/td>\n<td>SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/Domain-Validation-CA-SHA256-G2.txt\"><strong>Domain Validation CA &#8211; SHA256 &#8211; G2 (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GlobalSign-Root-R1.txt\"><strong>GlobalSign Root R1 (SHA-1)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>GlobalSign OV<\/td>\n<td>RSA<\/td>\n<td>SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/Organization-Validation-CA-SHA256-G2.txt\"><strong>Organization Validation CA &#8211; SHA256 &#8211; G2 (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GlobalSign-Root-R1.txt\"><strong>GlobalSign Root R1 (SHA-1)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>GlobalSign EV<\/td>\n<td>RSA<\/td>\n<td>SHA-2<\/td>\n<td>\u00a0<a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GlobalSign-Extended-Validation-CA-SHA256-G2.txt\"><strong>GlobalSign Extended Validation CA &#8211; SHA256 &#8211; G2 (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GlobalSign-Root-R1.txt\"><strong>GlobalSign Root R1 (SHA-1)<\/strong><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>&nbsp;<\/p>\n<\/div>\n<hr \/>\n<h2>Thawte Zertifikate<\/h2>\n<div class=\"table-responsive\">\n<table class=\"table table-striped table-hover\">\n<tbody>\n<tr>\n<th>Produkt<\/th>\n<th><strong>Encryption<\/strong><\/th>\n<th><strong>Hash\u00a0End-Punkt<\/strong><\/th>\n<th><strong>Intermediate<\/strong><\/th>\n<th>Root<\/th>\n<\/tr>\n<tr>\n<td>SSL123<\/td>\n<td>\u00a0RSA<\/td>\n<td>SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-DV-SSL-SHA256-CA.txt\"><strong>thawte DV SSL SHA256 CA (SHA-256)<\/strong><\/a><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-Primary-Root-CA-\u2013-G3.txt\">thawte Primary Root CA &#8211; G3\u00a0(SHA-256)<\/a><\/strong><\/td>\n<\/tr>\n<tr>\n<td>SSL Web Server<\/td>\n<td>RSA, DSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-SHA256-SSL-CA.txt\"><strong>thawte SHA256 SSL CA (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-Primary-Root-CA-\u2013-G3.txt\"><strong>thawte Primary Root CA &#8211; G3\u00a0(SHA-256)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>SGC Super Cert<\/td>\n<td>RSA, DSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-SHA256-SSL-CA.txt\"><strong>thawte SHA256 SSL CA (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-Primary-Root-CA-\u2013-G3.txt\"><strong>thawte Primary Root CA &#8211; G3\u00a0(SHA-256)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>SSL Web Server with EV<\/td>\n<td>RSA, DSA<\/td>\n<td>SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-Extended-Validation-SHA256-SSL-CA.txt\"><strong>thawte Extended Validation SHA256 SSL CA<\/strong><\/a><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/thawte-Primary-Root-CA-\u2013-G3.txt\">thawte Primary Root CA &#8211; G3\u00a0(SHA-256)<\/a><\/strong><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/VeriSign-Universal-Root-Certification-Authority.txt\"><br \/>\n<\/a><\/strong><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<p>&nbsp;<\/p>\n<hr \/>\n<h2>GeoTrust Zertifikate<\/h2>\n<div class=\"table-responsive\">\n<table class=\"table table-striped table-hover\">\n<tbody>\n<tr>\n<th>Produkt<\/th>\n<th>\u00a0<strong>Encryption<\/strong><\/th>\n<th>\u00a0<strong>Hash\u00a0End-Punkt<\/strong><\/th>\n<th>\u00a0<strong>Intermediate<\/strong><\/th>\n<th>\u00a0<strong>Cross-Root<\/strong><\/th>\n<th>Root<\/th>\n<\/tr>\n<tr>\n<td>QuickSSL Premium<\/td>\n<td>RSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-DV-SSL-CA-G4.txt\"><strong>GeoTrust DV SSL CA &#8211; G4 (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-Global-CA.txt\"><strong>GeoTrust Global CA (SHA-1)<\/strong><\/a><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/Equifax-Secure-Certificate-Authority.txt\">Equifax Secure Certificate Authority (SHA-1)<\/a><\/strong><\/td>\n<\/tr>\n<tr>\n<td>RapidSSL<\/td>\n<td>RSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/RapidSSL-SHA256-CA-G3.txt\"><strong>RapidSSL SHA256 CA &#8211; G3 (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-Global-CA.txt\"><strong>GeoTrust Global CA (SHA-1)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/Equifax-Secure-Certificate-Authority.txt\"><strong>Equifax Secure Certificate Authority (SHA-1)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>TrueBusiness ID<\/td>\n<td>RSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-SHA256-SSL-CA.txt\"><strong>GeoTrust SHA256 SSL CA (SHA-256)<\/strong><\/a><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-Primary-Certification-Authority-\u2013-G3.txt\"><strong>GeoTrust Primary Certification Authority &#8211; G3 (SHA-256)<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>True Business ID with EV<\/td>\n<td>RSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-SHA256-SSL-CA.txt\">GeoTrust Extended Validation SHA256 SSL CA (SHA-256)<\/a><\/strong><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/GeoTrust-Primary-Certification-Authority-\u2013-G3.txt\"><strong>GeoTrust Primary Certification Authority &#8211; G3 (SHA-256)<\/strong><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>&nbsp;<\/p>\n<\/div>\n<hr \/>\n<h2>Symantec Zertifikate<\/h2>\n<div class=\"table-responsive\">\n<table class=\"table table-striped table-hover\">\n<tbody>\n<tr>\n<th>Produkt<\/th>\n<th><strong>Encryption<\/strong><\/th>\n<th><strong>Hash\u00a0End-Punkt<\/strong><\/th>\n<th><strong>Intermediate<\/strong><\/th>\n<th>Root<\/th>\n<\/tr>\n<tr>\n<td><\/td>\n<td><\/td>\n<td><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/Symantec-Class-3-Secure-Server-SHA256-SSL-CA.txt\">Symantec Class 3 Secure Server SHA256 SSL CA<\/a><\/strong><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/VeriSign-Universal-Root-Certification-Authority.txt\"><strong>VeriSign Universal Root Certification Authority<\/strong><\/a><\/td>\n<\/tr>\n<tr>\n<td>Secure Site<\/td>\n<td>\u00a0RSA, DSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<\/tr>\n<tr>\n<td>Secure Site Pro<\/td>\n<td>RSA, DSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<\/tr>\n<tr>\n<td><\/td>\n<td><\/td>\n<td><\/td>\n<td><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/Symantec-Class-3-Extended-Validation-SHA256-SSL-CA.txt\"><strong>Symantec Class 3 Extended Validation SHA256 SSL CA<\/strong><\/a><\/td>\n<td><strong><a href=\"https:\/\/www.psw-group.de\/support\/wp-content\/uploads\/2014\/10\/VeriSign-Universal-Root-Certification-Authority.txt\">VeriSign Universal Root Certification Authority<\/a><\/strong><\/td>\n<\/tr>\n<tr>\n<td>Secure Site with EV<\/td>\n<td>RSA, DSA<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<\/tr>\n<tr>\n<td>Secure Site Pro with EV<\/td>\n<td>RSA, DSA, ECC<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<td>\u00a0SHA-2<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Ja, die Zertifizierungsstellen stellen die Zertifizierungskette nach und nach auf SHA-2 um. Wie Sie in der Tabelle sehen werden, sind SSL-Zertifikate und Zwischenzertifikate SHA-2, jedoch sind einige\u00a0Zertifikate von SHA-1 Root-Zertifikaten ausgestellt. In Bezug auf die \u00c4nderungen in Chrome 39 sollten keine Probleme auftreten, da Chrome nicht bis zum Root-Zertifikat \u00fcberpr\u00fcft. Comodo Zertifikate Bei allen\u00a0Comodo\u00a0Produkten ist&#8230;<\/p>\n","protected":false},"author":15,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[531],"tags":[90,91,92,80,93,94,95],"class_list":["post-732","post","type-post","status-publish","format-standard","hentry","category-allgemeine-fragen-zur-it-security","tag-comodo","tag-geotrust","tag-globalsign","tag-sha2","tag-symantec","tag-thawte","tag-zertifizierungskette"],"_links":{"self":[{"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/posts\/732","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/comments?post=732"}],"version-history":[{"count":2,"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/posts\/732\/revisions"}],"predecessor-version":[{"id":3434,"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/posts\/732\/revisions\/3434"}],"wp:attachment":[{"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/media?parent=732"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/categories?post=732"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.psw-group.de\/support\/wp-json\/wp\/v2\/tags?post=732"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}