← D-TRUST cases
Bugzilla #1509512
Certificate Problem Report
D-TRUST: syntax error in one tls certificate
RESOLVED
FIXED
D-TRUST
AI Summary
D-TRUST reported a syntax error in a TLS certificate issued on June 2, 2018, which contained an invalid character in the serial number field. The issue was discovered on November 12, 2018, leading to a series of actions including customer communication and revocation of the problematic certificate. The CA has since implemented measures to prevent similar issues, including additional training and system updates. All affected certificates have been revoked, and the CA has committed to improving its reporting processes.
Chronology
- CA became aware of the syntax error via crt.sh.
- New certificate issued and the problematic certificate was revoked.
Participants
Enrico Entschew
W. Thayer
External References
Similar Local Cases
D-Trust: Missed Revocation of TLS certificates affected by Bugzilla 1884714
D-Trust: Issuance of an EV certificate containing a mixup of the Subject's postalCode and localityName
D-TRUST: Precertificate OU > 64 Characters
D-Trust: "unknown" OCSP response for issued certificates
D-TRUST: incorrectly formatted businessCategory entry
D-Trust: QCStatement with http link of PKI Disclosure Statements
D-TRUST: Wrong key usage (Key Agreement)
D-TRUST: Certificate with RSA key where modulus is not divisible by 8