Your connection is not private error on Google Chrome

[goldenstar87]

Hi!

When you trying to visit some websites (youtube, facebook...) they won't load and an error message appears as below:

Your connection is not private

Attackers might be trying to steal your information from www.example.com (for example, passwords, messages, bank information or credit cards).

NET::ERR_CERT_DATE_INVALID

My computer is running Windows 10 Pro.Some friends suggested removing the Bitdefender software built into Windows 10, and the bug has disappeared. But I do not want to remove antivirus software, get some advice and if I can not use Bitdefender, what anti-virus software can I use?

 

[Oussebon]

I used to use Bitdefender until it started causing all kinds of problems. I switched to Avira free AV, and when I got sick of the constant ads I switched to Avast free AV and haven't looked back.

 

[mrrabtit85]

I used to use Bitdefender until it started causing all kinds of problems. I switched to Avira free AV, and when I got sick of the constant ads I switched to Avast free AV and haven't looked back.

You can still use Bitdefender or any other antivirus software. You just disable "HTTPS scanning" or "HTTPS protection" feature.

For Bitdefender users, go to Settings > Privacy Control > Antiphishing and then just turn the "Scan SSL" feature off.

You can also check a computer’s date and time. Make sure your Time zone is set properly.

read more: https://windows10freeapps.com/fix-your-connection-is-not-private-error-google-chrome/

 

[ubuysa]

Hi!

When you trying to visit some websites (youtube, facebook...) they won't load and an error message appears as below:

Your connection is not private

Attackers might be trying to steal your information from www.example.com (for example, passwords, messages, bank information or credit cards).

NET::ERR_CERT_DATE_INVALID

My computer is running Windows 10 Pro.Some friends suggested removing the Bitdefender software built into Windows 10, and the bug has disappeared. But I do not want to remove antivirus software, get some advice and if I can not use Bitdefender, what anti-virus software can I use?

When you connect securely to a website a protocol knows as Transport Layer Security (TLS) is used to authenticate the website as genuine. Without going into gritty details this involves the web server sending your browser a certificate (which is unique to that website) that has been issued by a trusted third party (a certification authority) that proves that this server is the real server and not a fake one (which wont have the correct certificate). This process is very similar to passports, they are issued by a trusted third party (the UK passport office) and they are used by border control all over the world to prove you are who you say you are. Passports have an expiry date, beyond which they are no longer acceptable as proof of your identity. Digital certificates also have an expiry date, beyond which they no longer prove that the server to which you have connected is the genuine one.

Just as you must remember to renew your passport before it expires, so website managers must renew their digital certificates before they expire. The message you are seeing (the NET::ERR_CERT_DATE_INVALID message) is a warning that the digital certificate the website has presented has expired and you must decide what to do about that. This situation is unlikely to be a third party trying to masquerade as the real server because the certificate that was presented was acceptable, it was just out of date. You will usually be ok continuing to the original website, but when I come across this situation I always contact the webmaster and warn him/her that their certificate is out of date.

The way your browser knows that the server certificate is genuine is by using what are known as root certificates which are stored in Windows. These certificates are updated every so often and if you are getting a lot of these for common websites then it's likely that your root certificates need updating. This is usually done via normal Windows update but it's also possible that you have some sort of browser issue that is interfering with TLS. Try using a different browser and see whether you get the same issue. It's also important (as has been said) that the system time is correct, this is a not uncommon cause of certificate errors...........

 

[Tony1044]

Actually I always used to give a nice simple explanation for this and can then explain how that error comes about and what it's trying to tell you.

So first the description.

Imagine the scenario where I want to send you a package, but the contents of that package are sensitive. Here's the steps we take:

1 - I place my package in a lock box and then apply my padlock to the box.
2 - I send you the box
3 - When you receive the box, you examine my lock to verify it is genuine and then you simply attach your padlock to it
4 - You send it back to me
5 - When I receive it, I verify it's your padlock and then I remove mine
6 - I send it back to you
7 - You remove your padlock

So these steps make up the basis of Private Key Infrastructure (PKI). My private key and your private key never leave our possession. In the above analogy, they quite literally are keys we use to unlock our own padlocks.

The padlocks are the public part - the certificate - that anyone can examine to ensure they are indeed owned by the person or company who claims to own them.

The padlocks are made to a very specific (albeit very complex) design that is verifiable. Anyone can call up the manufacturer of the locks and ask certain questions.

What the error above means is that the padlock suddenly isn't properly verifiable - perhaps it's out of date, or the manufacturer isn't trusted fully, for example.

It also helps to explain man-in-the-middle attacks.

So picture a scenario where I managed to pretend to be a lock manufacturer. All I do is intercept the package between you and whomever you are sending it and vice versa. I basically pick the lock on there, and having checked out what is inside, replace it with my own copy so the next time it comes back, I can open it at will.

Ultimately I either swap it back out with the original or you get those errors.

I am always wary of using third party tools (even well known ones such as Bitdefender) that manipulate my private browsing in any way as ultimately I have no control over what they're peering into or doing with it.

Personally, I'd use a free alternative - Defender in Windows works very well or Avast! free was always a nice player.

 

[ubuysa]

Many years (decades actually) ago I went to a seminar of public key encryption. The presenter had a nice analogy; he first asked whether anyone spoke Polish (nobody did) and then handed out four English-Polish dictionaries. He explained that these were his public key, they could be used to encrypt data but not decrypt it and there could be an unlimited number of copies. He then held up a Polish-English dictionary and explained that was his private key, it could be used to decrypt data that had been encrypted by his public key and there was only one private key and he kept it safe.

He asked someone in the audience with an English-Polish dictionary to choose an English word and read out the Polish equivalent. That alone raised a few laughs, but the point was the encrypted data (the English word) was now available to anyone. The presenter then invited the people with the other English-Polish dictionaries (his public key) to read out the English word that had been chosen. They could of course but only by brute force and only by scanning every entry in the dictionary. The presenter was able to look up the Polish word that had been read out and recover the original English word (ie. decrypt the data).

It wasn't a terribly accurate analogy but it did enable those of us new to public/private key pairs (including me at the time) to quickly grasp the basic idea....

 

[Tony1044]

That's more the cypher. Or cipher for our over-the-pond friends but it is a nice way to introduce the concept. I like it.

 

[Scott]

This happened a while back when using an out of date version of Avast. If it's the inbuilt software of Windows that's bringing about this error then I would be quite surprised. The date/time is definitely the first thing I would look at.

 

[MariaDavidson911WN]

stumble to search in the internet to look for a solution for this error finally found one that works for me ehh gonna share this to youll guys after clearing some cache and what now... i did this
Solution No. 2 from this website those proxy thingies
https://www.errorsolutions.tech/error/your-connection-is-not-private-chrome-error/ hopefully this gonna works as well to you'll guys cheer's.

 

[BlessedSquirrel]

stumble to search in the internet to look for a solution for this error finally found one that works for me ehh gonna share this to youll guys after clearing some cache and what now... i did this
Solution No. 2 from this website those proxy thingies
https://www.errorsolutions.tech/error/your-connection-is-not-private-chrome-error/ hopefully this gonna works as well to you'll guys cheer's.

If your browser is using a proxy then 9 X out of 10 you have a virus (unless you manually configured a proxy of course.)

 

[ubuysa]

This is a two year old thread!

I'm locking it now for necro.