← Visa cases
Bugzilla #1398261 Technical Compliance

Visa: Non-BR-Compliant OCSP Responders

RESOLVED FIXED Visa
AI Summary

Visa faced issues with its OCSP responders not complying with the Baseline Requirements (BRs), specifically regarding the requirement that OCSP responders must not return a 'good' status for unissued certificates. After extensive testing, Visa confirmed the issue and escalated it to their vendor for remediation. They ultimately decided to transition to a new OCSP infrastructure that meets Mozilla's requirements. The issue has since been resolved with the successful deployment of a new solution that properly responds to validation requests.

Model: gpt-4o-mini Generated: 2026-06-13 17:10 UTC Confidence: 0.95
Chronology
  1. Initial report of OCSP compliance issues.
  2. New OCSP solution successfully deployed and validated.
Participants
Kathleen Wilson Marcelo B. Silva Gervase Markham Paul Kehrer Adam Clark Jason Crawford Ryan Sleevi
External References
Original Bugzilla Case groups.google.com wiki.mozilla.org
Similar Local Cases
#1398246 RESOLVED Technical Compliance Opened 2017-09-08 · Closed 2023-02-22 · 67% similar
Consorci AOC: Non-BR-Compliant OCSP Responders
AI Summary CA Owner
#1428891 RESOLVED Technical Compliance Opened 2018-01-08 · Closed 2023-02-22 · 57% similar
Entrust: Non-BR-Compliant OCSP Responder
AI Summary CA Owner
#1398240 RESOLVED Technical Compliance Opened 2017-09-08 · Closed 2023-02-22 · 50% similar
Firmaprofesional: Non-BR-Compliant OCSP Responders
AI Summary CA Owner
#1015767 RESOLVED Technical Compliance Opened 2014-05-25 · Closed 2022-11-14 · 46% similar
startcom: still issuing < 2048 bit certificates
AI Summary CA Owner
#1579299 RESOLVED Technical Compliance Opened 2019-09-06 · Closed 2023-02-22 · 45% similar
Asseco DS / Certum: non-audited intermediate certificate
AI Summary CA Owner
#1391087 RESOLVED Certificate Problem Report Opened 2017-08-16 · Closed 2023-02-22 · 40% similar
Visa: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1436173 RESOLVED Technical Compliance Opened 2018-02-06 · Closed 2023-02-22 · 39% similar
DigiCert: SCEE / Justica: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1990272 RESOLVED Technical Compliance Opened 2025-09-23 · Closed 2026-05-04 · 38% similar
SwissSign: recommendation on backup testing
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action