← Internet Security Research Group cases
Bugzilla #1391867 Certificate Problem Report

Let's Encrypt: Non-BR-Compliant Certificate Issuance

RESOLVED Internet Security Research Group
AI Summary

This case addresses a compliance issue with Let's Encrypt regarding the issuance of non-Baseline Requirements (BR) compliant certificates. The CA was notified of the problem on August 10, 2017, and promptly applied a fix to their infrastructure. They confirmed that they ceased issuing the problematic certificates and provided a list of affected certificates. The issue stemmed from a mistake in their software code that was not caught during review, but was resolved on the same day it was reported.

Model: gpt-4o-mini Generated: 2026-06-13 11:59 UTC Confidence: 0.95
Chronology
  1. Let's Encrypt notified of compliance issue
  2. Fix applied to production infrastructure
Participants
Kathleen Wilson Josh Aas
External References
Original Bugzilla Case
Similar Local Cases
#1576789 RESOLVED Certificate Problem Report Opened 2019-08-27 · Closed 2024-05-09 · 60% similar
Let's Encrypt: 2019.08.20 Incident: Incorrect OCSP responses under certain conditions
AI Summary CA Owner
#1462735 RESOLVED Certificate Problem Report Opened 2018-05-18 · Closed 2023-02-22 · 59% similar
Let's Encrypt: Case-sensitive CAA tag processing
AI Summary CA Owner
#1715455 RESOLVED Certificate Problem Report Opened 2021-06-09 · Closed 2024-01-10 · 58% similar
Let's Encrypt: certificate lifetimes 90 days plus one second
AI Summary CA Owner
#1625322 RESOLVED Certificate Problem Report Opened 2020-03-26 · Closed 2023-02-22 · 58% similar
Let's Encrypt: Failure to revoke key-compromised certificates within 24 hours
AI Summary CA Owner
#1446080 RESOLVED Certificate Problem Report Opened 2018-03-15 · Closed 2023-02-22 · 58% similar
Let's Encrypt: Improper encoding of wildcard certificates
AI Summary CA Owner
#1627614 RESOLVED Certificate Problem Report Opened 2020-04-06 · Closed 2023-02-22 · 57% similar
Let's Encrypt: Failure to revoke key-compromised certificates within 24 hours
AI Summary CA Owner
#1486650 RESOLVED Certificate Problem Report Opened 2018-08-27 · Closed 2023-02-22 · 57% similar
Let's Encrypt: OCSP "unauthorized" responses
AI Summary CA Owner
#1619179 RESOLVED Certificate Problem Report Opened 2020-03-02 · Closed 2023-02-22 · 55% similar
Let's Encrypt: Incomplete revocation for CAA rechecking bug
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action