← DigiCert cases
Bugzilla #1429639
Certificate Problem Report
DigiCert: BR 3.2.5 Validation of Authority Failure for OV Certs
RESOLVED
DigiCert
AI Summary
DigiCert faced a validation failure for OV certificates due to a bug in their OEM integration, which allowed the issuance of certificates without proper authenticity verification. The issue was identified on December 30, 2017, and involved 3,437 organizations and 5,067 certificates. DigiCert has since implemented corrective measures and revoked a number of affected certificates.
Chronology
- Issue reported by TBS Internet
- Incident report posted to Mozilla forum
- Remediation completed with revocation of 35 certificates
Participants
Wayne Thayer
Jeremy Rowley
Tim Hollebeek
External References
Similar Local Cases
DigiCert: CAA Checking Issue
DigiCert: TI Trust Technologies Global CA issued certificate with no subject alternative name extension
DigiCert: Verizon: "Default City" in Subject:localityName
DigiCert: Random value in CNAME without underscore prefix
DigiCert: Issuance of Cert with Compromised Key
DigiCert / ABB: Issues with DN, country code and keyUsage
DigiCert: Failure to supervise ABB Subordinate CA
DigiCert: Symantec non-constrained/non-disclosed intermediate CA certificates