← Entrust cases
Bugzilla #1520876
Certificate Misissuance
Entrust: Late mis-issue certificate revocation
RESOLVED
FIXED
Entrust
AI Summary
Entrust Datacard faced a late revocation of a mis-issued certificate, which was not revoked within the required 5-day deadline. The issue was identified during the documentation of the revocation process. Following the incident, Entrust updated its procedures to ensure that the revocation deadline is based on the notification time rather than the investigation completion time. The CA has implemented a system to alert managers to ensure timely revocation in the future.
Chronology
- Certificate issued
- Miss-issuance detected and investigation started
- Verification team advised of the process issue
- Miss-issued certificate revoked
Participants
Bruce Morton
Ryan Sleevi
W. Thayer
External References
Similar Local Cases
Entrust: Certificate issued with validity greater than 825-days
Entrust: Issued Certificates to incorrect Organization
Entrust: Certificate Issued with Incorrect Country Code
Entrust: Question marks in certificate O and L fields
Entrust: IP in dnsName
Entrust: Subscriber provides private key with CSR
Entrust: SHA-256 hash algorithm used with ECC P-384 key
Entrust: SHA-1 Issuance and other misissuance while testing