Tap here to go to the mobile version of the site.
Your Firefox is out of date and may contain a security risk! Upgrade Firefox

Support Forum

Certificate Manager - TURKTRUST - What is it?


In Certificate Manager I find TURKTRUST - it has a Builtin Object token (whatever that is) - when I Google it, I get sites that are written in what looks to be an eastern European language but no English sites with information on what or who it is. Does anyone have a clue what it is and why I need it?

Additional System Details

Installed Plug-ins

  • HP Product Detection Plugin
  • 1.7.0069.3
  • Adobe Shockwave for Director Netscape plug-in, version 11.0
  • Default Plug-in
  • Adobe PDF Plug-In For Firefox and Netscape "9.4.1"
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • RealPlayer(tm) LiveConnect-Enabled Plug-In
  • The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
  • Shockwave Flash 10.2 r152
  • iTunes Detector Plug-in
  • GEPlugin
  • Picasa plugin
  • Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers
  • 4.0.51204.0
  • Virtual Earth 3D 4.00090316005 plugin for Mozilla
  • RealPlayer(tm) HTML5VideoShim Plug-In


  • User Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv: Gecko/20100401 Firefox/3.6.3 (.NET CLR 3.5.30729) SearchToolbar/1.2

More Information

I also see certs for AOL and many others I do not and have not used.
Can I delete all of these and "start over" with new certificates as I need them for each individual site?

  • Top 10 Contributor
  • Moderator
10776 solutions 96959 answers

That are the build-in root certificates that Firefox uses to verify the certificates send by servers.

Question owner

In Options/View Certificates/Your Certificates there are over 80 companies (?) with some 200 lines of Builtin Object Tokens or Software Security Devices. The Wiki description does absolutely nothing to explain (for most of the people on my planet) what it is (or does): "A root certificate is either an unsigned public key certificate or a self-signed certificate that identifies the Root Certificate Authority". Great - Well, that certainly makes it about as clear as mud for me! Do these certificates allow the holder to install anything in my computer without my knowing it - like the Microsoft .NET Framework Assistant - or otherwise have any access to my computer? There are companies there I've never used (AOL, etc.) nor would I. What would happen if I just deleted all of these certificates and let them populate as I used one of their websites that required them?

  • Top 10 Contributor
  • Moderator
10776 solutions 96959 answers

Helpful Reply

Certificates labeled as "Builtin Object Tokens" are the build-in root certificates. Certificates labeled as "Software Security Devices" are intermediate certificates that Firefox automatically stores for future use after visiting a server that sends such an intermediate certificate. Those certificates can be removed. You cannot remove build-in root certificates, you can only disable the trust bits via Edit.