← Telia Company cases
Bugzilla #1451953
CCADB Compliance
Telia: Intermediate Cert(s) Not Disclosed in CCADB
RESOLVED
FIXED
Telia Company
AI Summary
Telia Company identified that one or more intermediate certificates were not disclosed in the Common CA Database (CCADB), which is a requirement under Mozilla's Root Store Policy. The CA took steps to update the CCADB to include the new Sub CA certificates and planned to revoke the undisclosed certificates. After several discussions and technical challenges, the revocation was successfully completed, and the status of the intermediates was updated to 'revoked' in CCADB, resolving the compliance issue.
Chronology
- Initial report of undisclosed intermediate certificates.
- Telia updates CCADB with new Sub CA certificates.
- Revocation of undisclosed certificates confirmed.
- Status of intermediates updated to 'revoked' in CCADB.
Participants
Kathleen Wilson
Wayne Thayer
Pekka Lahtiharju
External References
Similar Local Cases
DigiCert: Intermediate Cert(s) not disclosed in CCADB
Dhimyotis / Certigna: Intermediate Cert(s) not disclosed in CCADB
Entrust: Outdated audit statement for intermediate cert
Consorci AOC: Qualified audit statements
DocuSign/Keynectis: Outdated audit statements for Class 2 Primary CA
GoDaddy: Failure to respond to January 2018 survey
DigiCert: Missing audits for Intermediate certificates
Telia: Delayed submission of preliminary audit incident report