The table that is included in this article lists the third-party commercial certification authorities (CAs) that are trusted by Microsoft. As a Windows user, you can use the listed CAs for secure e-commerce.
Back to the top
CAs validate the identity and entitlement of an applicant. In this process, the applicant is issued a digital certificate. You can use digital certificates to prove the identity of a remote person or a remote resource.
To verify that Microsoft customers have access to trusted CAs, Microsoft uses "WebTrust for Certificate Authorities" or an equivalent third-party audit tool. Additionally, Microsoft uses other technical requirements to maintain a list of trusted CAs.
Back to the top
New this month
The following CAs were added when this article was updated in January 2008.
| Member | Location | URL |
|---|
| Government of Slovenia, Slovenian General Certification Authority (SIGEN-CA) | Slovenia | http://www.sigen-ca.si/ |
| Government of Slovenia, Slovenian Governmental Certification Authority (SIGOV-CA) | Slovenia | http://www.sigov-ca.si/ |
| Government of South Korea, Ministry of Government Administration and Home Affairs (MOGAHA) | South Korea | http://www.mogaha.go.kr |
| Halcom D.D. | Slovenia | http://www.halcom.si |
| Kamu Sertifikasyon Merkezi (Kamu SM) | Turkey | http://www.kamusm.gov.tr |
| Nova Ljubljanska Banka (NLB) | Slovenia | http://www.nlb.si |
Back to the top
Microsoft root certificate program members
The following table lists the Microsoft root certificate program members. The list includes new CAs that support Extended Validation (EV) certificates in Windows Internet Explorer 7.
| Member | Location | URL |
|---|
| Abogacia | Spain | http://www.redabogacia.com |
| Administracion National de Correos | Uruguay | http://www.correo.com.uy/correocert |
| Agencia Catalana de Certificacio (CATCert) | Spain | http://www.catcert.net |
| Agencia Notarial de Certificación (ANCERT) | Spain | http://www.ancert.com |
| AOL | U.S. | http://www.aol.com |
| AS Sertifitseerimiskeskuse | Estonia | http://www.sk.ee |
| Asociacion Nacional del Notariado Mexicano | Mexico | http://www.notariadomexicano.org.mx |
| A-Trust | Austria | http://www.a-trust.at |
| Australian Government Information Management Office (AGIMO) | Australia | http://www.agimo.gov.au/infrastructure/gatekeeper |
| Austria Telekom-Control Commission | Austria | http://www.signatur.rtr.at |
| Austrian Society for Data Protection (Arge Daten) | Austria | http://www.signatur.rtr.at/de/providers/providers/argedaten.html |
| Autoridad Certificadora Raiz de la Secretaria de Economia | Mexico | http://www.economia.gob.mx |
| Autoridad de Certificacion Firmaprofesional | Spain | http://www.firmaprofesional.com |
| Autoridade Certificadora Raiz Brasileira | Brazil | http://www.icpbrasil.gov.br |
| Autoritat de Certificacio de la Comunitat Valenciana (ACCV) | Spain | http://www.accv.es |
| Belgacom E-Trust | Belgium | http://www.e-trust.be |
| Camefirma | Spain | http://www.camerfirma.com |
| CC Signet (Centrum Certyfikacji Signet) | Poland | http://www.signet.pl |
| Certicámara S.A. | Colombia | http://www.certicamara.com/ |
| Certipost s.a./n.v. | Belgium | http://www.certipost.be/ |
| Certisign | Brazil | http://www.certisign.com.br/ |
| CertPlus | France | http://www.certplus.com |
| Colegio de Registradores Mercantile (Spanish Property & Commerce Registry) | Spain | https://www.registradores.org |
| Comodo Group | U.S. | http://www.comodogroup.com |
| ComSign | Israel | http://www.ComSign.co.il |
| Cybertrust | U.S. | http://www.cybertrust.com/ |
| Deutsche Telekom | Germany | http://www.telekom.de |
| DigiCert | U.S. | http://www.DigiCert.com |
| DigiNotar B.V. | The Netherlands | http://www.diginotar.nl |
| Dirección General de la Policía – Ministerio del Interior – España. | Spain | http://www.policia.es/ |
| DST | U.S. | http://www.digsigtrust.com/ |
| D-TRUST GmbH | Germany | http://www.d-trust.net/ |
| Echoworx | U.S. | http://www.echoworx.com/ |
| Entrust | Canada | http://www.entrust.com/certificate_services/index.htm |
| eSign | Australia | http://www.esign.com.au/ |
| e-tugra | Turkey | http://www.e-tugra.com |
| EUnet International | Finland | http://www.eunet.fi/ |
| Finnish Population Register Centre | Finland | http://www.vrk.fi/ |
| First Data Digital Certificates | U.S. | http://www.firstdata.com/index.jsp |
| FNMT (Royal Spanish Mint) | Spain | http://www.ceres.fnmt.es/ |
| GeoTrust | U.S. | http://www.geotrust.com |
| GlobalSign | UK | http://www.globalsign.com/ |
| GoDaddy | U.S. | http://www.godaddy.com |
| Government of France | France | http://www.ssi.gouv.fr/fr/index.html |
| Government of Japan Ministry of Internal Affairs and Communications | Japan | http://www.soumu.go.jp/menu_06/shinsei/ninshoukyoku.html |
| Government of Slovenia, Slovenian General Certification Authority (SIGEN-CA) | Slovenia | http://www.sigen-ca.si/ |
| Government of Slovenia, Slovenian Governmental Certification Authority (SIGOV-CA) | Slovenia | http://www.sigov-ca.si/ |
| Government of South Korea Information Security Agency (KISA) | South Korea | http://www.kisa.or.kr |
| Government of South Korea, Ministry of Government Administration and Home Affairs (MOGAHA) | South Korea | http://www.mogaha.go.kr |
| Government of Taiwan Root Certification Authority (Chung Hwa Telecom) | Taiwan ROC | http://www.rdec.gov.tw, http://www.pki.gov.tw/ |
| Government of The Netherlands (PKI overheid) | The Netherlands | http://www.pkioverheid.nl |
| Government of Tunisia National Digital Certification Agency | Tunisia | http://www.certification.tn/ |
| Halcom D.D. | Slovenia | http://www.halcom.si |
| Hongkong Post | Hong Kong | http://www.hongkongpost.gov.hk/product/cps/ecert/index.html |
| Internet Publishing Services (IPS Servidores) | Spain | http://www.ips.es/ |
| IZENPE | Spain | http://www.izenpe.com |
| Kamu Sertifikasyon Merkezi (Kamu SM) | Turkey | http://www.kamusm.gov.tr |
| KMD | Denmark | http://www.kmd-ca.dk |
| Latvian Post | Latvia | http://www.pasts.lv |
| Microsec Ltd.e-Szigno | Hungary | http://www.e-szigno.hu |
| NetLock | Hungary | http://www.netlock.hu/ |
| Network Solutions | U.S. | http://www.networksolutions.com |
| Nova Ljubljanska Banka (NLB) | Slovenia | http://www.nlb.si |
| Post.Trust | Ireland | http://www.post.trust.ie/ |
| PTT Post | The Netherlands | http://www.ptt-post.nl |
| Quovadis | Bermuda | http://www.quovadis.bm/ |
| RSA | U.S. | http://www.rsa.com |
| Saunalahden Serveri | Finland | http://www.saunalahti.fi/ |
| SECOM Trust Systems Co Ltd. | Japan | http://www.secomtrust.net |
| SecureNet | Australia | http://www.certificates-australia.com.au/general/snx.shtml |
| SecureSign | Japan | http://www2.jcsinc.co.jp |
| Serasa | Brazil | http://www.serasa.com/ |
| SIA | Italy | https://ca.sia.it/ |
| Skaitmeninio Sertifikavimo Centras (SSC) | Lithuania | http://www.ssc.lt
|
| Sonera | Finland | http://www.sonera.com/ |
| S-TRUST | Germany | http://www.s-trust.de |
| Swisscom Solutions AG | Switzerland | http://www.swisscom.com/solutions/ |
| SwissSign AG | Switzerland | http://swisssign.com |
| TC TrustCenter | Germany | http://www.trustcenter.de/ |
| TDC | Denmark | http://www.tdc.dk |
| Thawte | South Africa | http://www.thawte.com/ |
| Trustis Limited | United Kingdom | http://www.trustis.com |
| TurkTrust | Turkey | http://www.turktrust.com.tr/ |
| Trustwave | U.S. | http://www.SecureTrust.com/ |
| U.S. Government Federal PKI | U.S. | http://www.cio.gov\fpkipa |
| Unizeto Certum | Poland | http://www.certum.pl |
| UserTRUST | U.S. | http://www.usertrust.com/ |
| ValiCert | U.S. | http://www.valicert.com/ |
| VeriSign | U.S. | http://www.verisign.com/ |
| Visa | U.S. | http://www.visa.com |
| Wells Fargo | U.S. | http://www.wellsfargo.com/certpolicy |
| WISeKey | Switzerland | http://www.wisekey.com/ |
Microsoft provides third-party contact information to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.
For more information about the Microsoft root certificate program requirements, visit the following Microsoft TechNet Web site:
For more information about the support for EV certificates in Internet Explorer 7, visit the following Web site:
For more information about EV guidelines and EV certificates, visit the following Web site:
Back to the top
How Windows updates root certificates
Windows XP, Windows Server 2003, and Windows Vista automatically check the list of trusted CAs on the Windows Update Web site. Then, Windows installs root certificates after the certificates are validated by an application of the user.
For more information about how Windows updates root certificates in Windows Vista, visit the following Web site:
For more information about how Windows updates root certificates in Windows Server 2003, visit the following Web site:
For more information about how Windows updates root certificates in Windows XP, visit the following Web site:
For more information about how Windows updates root certificates in Windows Server 2003, visit the following Web site:
Note In Windows Server 2003, the issuer list cannot be larger than 0x3000. When you update root certificates, the list of trusted CAs increases significantly and may become too long. When this occurs, the list is truncated. This condition may cause problems with authorization, and it may cause channel event ID 36885.
Back to the top
The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.
Back to the top
