← Actalis cases
Bugzilla #1405817 Certificate Misissuance

Actalis: Certs issued with same issuer and serial number

RESOLVED FIXED Actalis
AI Summary

Actalis issued intermediate certificates with the same issuer and serial number, violating the serial number uniqueness requirement of the BRs and RFC5280. The affected SubCA certificate was scheduled for revocation on October 4, 2017. Remedial actions included updates to their post-processing software and staff training to prevent recurrence. The issue was resolved with the completion of all action items, including the decommissioning of the legacy software.

Model: gpt-4o-mini Generated: 2026-06-13 17:11 UTC Confidence: 0.95
Chronology
  1. Initial incident report provided; affected SubCA certificate scheduled for revocation.
  2. Update on remedial actions; SubCA certificate revoked as scheduled.
  3. Confirmation that all action items completed and issue closed.
Participants
Kathleen Wilson Adriano Santoni Gervase Markham W. Thayer
External References
Original Bugzilla Case groups.google.com crt.sh crt.sh crt.sh wiki.mozilla.org
Similar Local Cases
#1390991 RESOLVED Certificate Misissuance Opened 2017-08-16 · Closed 2023-02-22 · 63% similar
Disig: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1405815 RESOLVED Certificate Misissuance Opened 2017-10-04 · Closed 2023-02-22 · 63% similar
Camerfirma: Certs issued with same issuer and serial number
AI Summary CA Owner
#1534295 RESOLVED Certificate Misissuance Opened 2019-03-11 · Closed 2023-02-22 · 58% similar
Actalis: Insufficient serial number entropy
AI Summary CA Owner
#1404403 RESOLVED Certificate Misissuance Opened 2017-09-29 · Closed 2023-02-22 · 57% similar
SwissSign: Two certs issued with same issuer and serial number
AI Summary CA Owner
#1319609 RESOLVED Certificate Misissuance Opened 2016-11-23 · Closed 2023-02-22 · 56% similar
Let's Encrypt: certs issued contrary to CPS due to incomplete blocklist
AI Summary CA Owner
#1293366 RESOLVED Certificate Misissuance Opened 2016-08-08 · Closed 2022-11-14 · 56% similar
WoSign issued SHA-1 SSL certs and backdated the issuance date on SSL certificates
AI Summary CA Owner
#1391055 RESOLVED Certificate Misissuance Opened 2017-08-16 · Closed 2023-02-22 · 56% similar
Microsec: Non-BR-Compliant Certificate Issuance
AI Summary CA Owner
#1397969 RESOLVED Certificate Misissuance Opened 2017-09-08 · Closed 2023-02-22 · 56% similar
DigiCert / Inteso San Paulo: Double dot characters
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action