← DocuSign (OpenTrust/Keynectis) cases
Bugzilla #1313873 Certificate Misissuance

SHA-1 issuance by DocuSign root

RESOLVED DocuSign (OpenTrust/Keynectis)
AI Summary

This case addresses the issuance of SHA-1 certificates by DocuSign's root CA, which is against Mozilla's policies. The certificates were issued erroneously due to a failure in organizational and technical controls. DocuSign has since revoked the misissued certificates and is implementing measures to prevent future occurrences. The CA's compliance with the Baseline Requirements is under scrutiny, and corrective actions are being taken.

Model: gpt-4o-mini Generated: 2026-06-13 14:07 UTC Confidence: 0.95
Chronology
  1. Initial report of SHA-1 certificates issued by DocuSign
  2. DocuSign provides details on the misissuance and corrective actions
  3. Mozilla acknowledges the corrective measures taken by DocuSign
Participants
Gervase Markham Kathleen Wilson Erwann Abalea
External References
Original Bugzilla Case crt.sh www.docusign.fr
Similar Local Cases
#1315016 RESOLVED Certificate Misissuance Opened 2016-11-03 · Closed 2022-11-14 · 60% similar
SHA-1 issuance by Visa root
AI Summary CA Owner
#1313872 RESOLVED Certificate Misissuance Opened 2016-10-29 · Closed 2022-11-14 · 59% similar
SHA-1 issuance by DigiCert roots
AI Summary CA Owner
#1405815 RESOLVED Certificate Misissuance Opened 2017-10-04 · Closed 2023-02-22 · 57% similar
Camerfirma: Certs issued with same issuer and serial number
AI Summary CA Owner
#1390991 RESOLVED Certificate Misissuance Opened 2017-08-16 · Closed 2023-02-22 · 57% similar
Disig: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1397969 RESOLVED Certificate Misissuance Opened 2017-09-08 · Closed 2023-02-22 · 57% similar
DigiCert / Inteso San Paulo: Double dot characters
AI Summary CA Owner
#1391056 RESOLVED Certificate Misissuance Opened 2017-08-16 · Closed 2023-02-22 · 56% similar
NetLock: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1391055 RESOLVED Certificate Misissuance Opened 2017-08-16 · Closed 2023-02-22 · 56% similar
Microsec: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1386891 RESOLVED Certificate Misissuance Opened 2017-08-02 · Closed 2023-02-22 · 56% similar
Certinomis: Cross-signing of StartCom intermediate certs, and delay in reporting it in CCADB
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action