Chrome will stop using the underlying OS’s store of trusted root certificate authorities. Google’s going to DIY it.
La GOOG thinks it can do a better job of weeding out untrustworthy CAs. But the plan obviously risks duplication of effort and frustration among IT and DevOps communities.
Read this Security Blogwatch article to learn more about the widespread distrust of Google’s Chrome Root Program.