"Your connection is not private" with Chrome on Android Phone

PKI Tutorials - Herong's Tutorial Examples

∟"Your connection is not private" with Chrome on Android Phone

This section provides a tutorial example on how to resolve the 'Your connection is not private' error with Chrome on Android phone.

In the last tutorial, we learned that Chrome will display lock icon, if the HTTPS Website has a valid certificate. Here is what will happen if the Website has an invalid certificate.

1. Run Chrome on your Android phone and enter the address of a Website that has an invalid certificate. An error message is displayed.

Your connection is not private

Attackers might be trying to steal your information
from some.domain.com (for example, passwords,
messages, or credit cards).
NET::ERR_CERT_DATE_INVALID

2. Tap on "Advanced". Detailed messaged of the certificate error is displayed. For example, if the certificate has expired, the message will say "its security certificate expired 60 days ago".

3. Tap on "Back to safety" to stop visiting the Website, if this is your financial Website.

4. Tap on "Proceed to some.domain.com" to ignore the error, if you are just surfing this Website.

Note that an invalid certificate could be the result of a man-in-the-middle attach, where a hacker secretly intercepts the communication between you and the Website. The hacker also replaces the original server certificate with his/her fake certificate.