← DarkMatter LLC cases
Bugzilla #1519265
Policy Compliance
QuoVadis: Recap of BR Compliance in 2018 issuance by external subCAs
RESOLVED
FIXED
DarkMatter LLC
AI Summary
The case discusses QuoVadis's compliance with BR requirements during 2018, highlighting issues identified through post-issuance linting of SSL certificates. Several problematic certificates were discovered, leading to revocations and procedural updates to prevent future occurrences. The CA implemented changes to its certificate management system and enhanced its linting processes to ensure compliance. The case was resolved with a commitment to transparency and improved practices.
Chronology
- Certificate issued and identified with issues via internal linting.
- Another certificate issued with multiple compliance issues discovered later.
- Initial report and disclosure of identified issues filed.
- Case resolved after comprehensive report provided.
Participants
Stephen Davidson
Wayne Thayer
Ryan Sleevi
External References
Similar Local Cases
QuoVadis: Non-BR-Compliant Certificate Issuance
QuoVadis: Unconstrained CAs missing audits
GoDaddy: Non-BR-Compliant Certificate Issuance
DigiCert: Inconsistent EV audits
PKIoverheid: KPN CPS lacks CPR problem reporting instructions
NetLock: Issuance of intermediates after 2019-01-01 that do not comply with Mozilla Policy
PKIoverheid: Compliance issues CIBG TLS certificates
Sectigo: Missing Changelog in CPS