← Izenpe S.A. cases
Bugzilla #1528290
Certificate Misissuance
Izenpe: OU > 64 characters
RESOLVED
FIXED
Izenpe S.A.
AI Summary
Izenpe S.A. reported a misissuance of a certificate with an Organizational Unit (OU) exceeding 64 characters. The certificate was issued on February 14, 2019, detected shortly after, and revoked within minutes. Izenpe implemented immediate manual checks and communicated with their PKI software manufacturer, who provided a hotfix for the issue. All planned remediation actions, including applying additional filters and categorizing patches, were completed by March 4, 2019.
Chronology
- Certificate issued
- Misissuance detected
- Certificate revoked
- All remediation actions completed
Participants
Wayne Thayer
Oscar Garcia
External References
Similar Local Cases
Izenpe: Multiple invalid EV certificates issued
Izenpe: Non-BR-Compliant OCSP Responders
SSL.com: P-384 curve / ecdsa-with-SHA256 certificates
SECOM: CrossTrust: OU > 64 characters
QuoVadis: Certificate containing Debian weak key
IdenTrust: Internal names / failure to report
Camerfirma: MULTICERT organizationName Too Long
QuoVadis: Non-BR-Compliant issuance --improper characters in DNSName (BIT sub-CA)