← Trustis cases
Bugzilla #1426249 Certificate Problem Report

Trustis: Non-Br-Compliant OCSP Responder

RESOLVED FIXED Trustis
AI Summary

The Trustis OCSP responders were found to be returning a 'good' status for invalid serial numbers, violating the Baseline Requirements (BR) effective since August 2013. Trustis acknowledged the issue and confirmed that they ceased issuing certificates on January 7, 2018, while working on a compliant OCSP solution. An incident report was provided detailing the timeline of actions taken to resolve the issue, including the migration of OCSP services to Entrust Datacard infrastructure. The case has been resolved with confirmation that no problematic certificates were issued.

Model: gpt-4o-mini Generated: 2026-06-13 17:41 UTC Confidence: 1.00
Chronology
  1. Bug reported regarding non-compliance of OCSP responder.
  2. Trustis stopped issuing certificates.
  3. OCSP fix tested and confirmed as completed.
  4. Trustis confirmed no active certificates rely on the old OCSP infrastructure.
Participants
Wayne Thayer Blake Morgan
External References
Original Bugzilla Case wiki.mozilla.org crt.sh
Similar Local Cases
#1398247 RESOLVED Certificate Problem Report Opened 2017-09-08 · Closed 2023-02-22 · 55% similar
DocuSign/Keynectis: Non-BR-Compliant OCSP Responders
AI Summary CA Owner
#1523680 RESOLVED Certificate Problem Report Opened 2019-01-29 · Closed 2023-02-22 · 52% similar
Actalis: Non BR Compliant OCSP Responder
AI Summary CA Owner
#1548716 RESOLVED Certificate Problem Report Opened 2019-05-02 · Closed 2023-02-22 · 50% similar
DigiCert: Verizon: "Default City" in Subject:localityName
AI Summary CA Owner
#1398259 RESOLVED Certificate Problem Report Opened 2017-09-08 · Closed 2023-02-22 · 50% similar
SECOM: Non-BR-Compliant OCSP Responders
AI Summary CA Owner
#1398269 RESOLVED Certificate Problem Report Opened 2017-09-08 · Closed 2023-02-22 · 50% similar
DigiCert: Non-BR-Compliant OCSP Responders
AI Summary CA Owner
#1531800 RESOLVED Certificate Problem Report Opened 2019-03-01 · Closed 2023-02-22 · 49% similar
QuoVadis: DarkMatter Insufficient Serial Number Entropy
AI Summary CA Owner
#1524816 RESOLVED Certificate Problem Report Opened 2019-02-03 · Closed 2023-02-22 · 49% similar
SECOM: failure to revoke underscores
AI Summary CA Owner
#1582519 RESOLVED Certificate Problem Report Opened 2019-09-19 · Closed 2022-11-14 · 49% similar
DigiCert: Apple: Precertificates without corresponding certificates return OCSP value of "unknown"
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action