← Asseco Data Systems S.A. cases
Bugzilla #1495518 Certificate Problem Report

Asseco DS / Certum: Unallowed key usage for EC public key (Key Encipherment)

RESOLVED FIXED Asseco Data Systems S.A.
AI Summary

Asseco Data Systems S.A. faced an issue with certificates issued by their subordinate CA, Yandex, which had unallowed key usage for EC public keys. An incident report was requested and subsequently provided, detailing the timeline of events and corrective actions taken. The CA identified the root cause as a software misconfiguration that allowed incorrect profiles for certificate requests. Remediation steps included software fixes and the implementation of pre-issuance linting to prevent future misissuance. The case has been resolved with all affected certificates revoked.

Model: gpt-4o-mini Generated: 2026-06-13 17:55 UTC Confidence: 1.00
Chronology
  1. Bug created by Wayne Thayer regarding unallowed key usage.
  2. Certum acknowledged the issue and began preparing a fix.
  3. Fix deployed on production and affected customers informed.
  4. Fully automatic pre-issuance linting deployed.
Participants
Wayne Thayer Wojciech Trapczyński
External References
Original Bugzilla Case crt.sh wiki.mozilla.org
Similar Local Cases
#1598277 RESOLVED Certificate Problem Report Opened 2019-11-21 · Closed 2024-06-30 · 69% similar
Asseco DS / Certum: Intermediate CA certificates not listed in audit report
AI Summary CA Owner
#1600158 RESOLVED Certificate Problem Report Opened 2019-11-28 · Closed 2023-02-22 · 67% similar
Asseco DS / Certum: Failure to revoke intermediate certificates within the BR time period
AI Summary CA Owner
#1511459 RESOLVED Certificate Problem Report Opened 2018-11-30 · Closed 2023-02-22 · 67% similar
Asseco DS / Certum: Corrupted certificates
AI Summary CA Owner
#1567062 RESOLVED Certificate Problem Report Opened 2019-07-18 · Closed 2023-02-22 · 66% similar
Asseco DS / Certum: inconsistent disclosure of externally-operated intermediate
AI Summary CA Owner
#1550575 RESOLVED Certificate Problem Report Opened 2019-05-09 · Closed 2023-02-22 · 61% similar
Asseco DS / Certum: commonName not from subjectAltName entries
AI Summary CA Owner
#1524195 RESOLVED Certificate Problem Report Opened 2019-01-31 · Closed 2023-02-22 · 59% similar
Asseco DS / Certum: Invalid dnsNames
AI Summary CA Owner
#1433118 RESOLVED Certificate Problem Report Opened 2018-01-25 · Closed 2022-11-14 · 59% similar
Asseco DS / Certum: certificate issued by Certum with compromised private key not revoked (windows10.microdone.cn)
AI Summary CA Owner
#1524878 RESOLVED Certificate Problem Report Opened 2019-02-03 · Closed 2023-02-22 · 56% similar
Asseco DS / Certum: IP in dnsName
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action