About the ZT Browser UI displaying the "SM2 Certificate Transparency" icon

Whether a website is secure or not, there are at least three basic elements, one is https encryption, the other is WAF protection, and the third is trusted identity validation, all three are indispensable. That's why the ZT Browser innovatively displays three security-related icons:     , not only has the security padlock, but also have the cloud WAF protection icon and the website trusted identity validation level icon. We also innovatively added a cryptography protection compliance icon: especially for the website that adopts the SM2 algorithm to realize https encryption, which conspicuously proves that this website is "cryptography protection compliance". And in the details of the cryptography protection compliance icon, a SM2 Certificate Transparency icon is added: , it is eye-catching to tell site visitors whether the SM2 SSL certificate that is used to realize SM2 HTTPS encryption supports the SM2 Certificate Transparent mechanism. Please refer to the innovation UI Icon Summary of ZT Browser for details.

One of the main features of ZT Browser is to fully support the SM2 algorithm and the SM2 SSL certificate. This is one of the Cryptography Law compliant innovative technologies for website security. With the continuous implementation of the Cryptography Law, all government agencies and financial agencies have also increasingly needed to realize the SM2 compliance for their website security, and gradually began to deploy the SM2 SSL certificate to realize the SM2 HTTPS encryption.

HTTPS encryption, realizing information transmission from browser to server is encrypted, preventing confidential information from leaking in the transmission process, effectively eliminating various illegal stealing and illegal tampering. This is the baseline of the website security. In order to ensure the security and trust of the SSL certificate itself, the certificate transparency mechanism has played a key role, and it has successfully guaranteed more than 7.1 billion RS/ECC algorithm SSL certificates.

To ensure the security and trust of SM2 SSL certificates used for SM2 HTTPS encryption, ZoTrus Technology has achieved the SM2 Certificate Transparency mechanism firstly in the world, which can effectively prevent the wrong issuance and malicious issuance of SM2 SSL certificate for vicious assault. ZT Browser has exclusively realized the supporting of SM2 Certificate Transparency mechanism (supports the SM2 SSL certificate and the use SM2 algorithm to sign the certificate transparency timestamp), and it supports real-time verification of the SM2 Signed Certificate Timestamp signature data (SCT), thereby effectively ensuring the SM2 SSL certificate itself is secure and trust.

As shown in the left figure below, this is the state of the SM2 SSL certificate that already embeds the SM2 Certificate Transparency SCT data in the certificate. It not only displays the "SM2 Certificate Transparency", but also displays the list of certificate transparency logs severs. As shown in the right figure below, if the SM2 SSL certificate does not embed the certificate transparency log data of the ZT Browser trust, it will display "SM2 Certificate NOT Transparency".

It is only a temporary transition plan for SM2 SSL certificate that does not embed SCT data. ZT Browser is planned to use the same policy as the current Google Chrome after Jan. 1, 2025, that is, “Not secure” warning will be displayed in the address bar if no ZT Browser trusted SM2 SCT data in the SM2 SSL certificate, and no longer displays the cryptography protection compliance icon. All ZT Browser trusted SM2 root CA operators must update the CA system in time to issue SM2 SSL certificate embedded SCT data before the deadline, this not only avoid the “Not secure” warning, but also can increase the security level of SM2 SSL certificate itself and enhances the core competitiveness of the issued SM2 SSL certificate.