Google Trust Services provides Transport Layer Security (TLS) certificates. TLS, formerly know as Secure Sockets Layer or SSL, secures information sent between a webserver and browser to ensure confidentiality and integrity of the data Google uses the same certificates for all of its services which ensures wide compatibility. The service is built on Google’s geographically distributed infrastructure and backed by security and compliance audits to provide a transparent, trusted, and reliable Certificate Authority.
Signed HTTP Exchange certificates for Web Packages are also offered.
Google Trust Services has S/MIME capable roots, but has not announced any specific
service offerings at this time.
Google Trust Services supports the proposed ACME Renewal Information (ARI)
standard and
strongly encourages clients and users to implement ARI support. In the unlikely event
of large revocations or changes in issuance volume, ARI makes the replacement
process smoother for clients who support it.
Google Trust Services supports Multi-perspective Issuance Corroboration
(MPIC)
MPIC mitigates network (BGP) and DNS attacks that could allow for incorrect validation
based on malicious information injected during an attack.