← DarkMatter LLC cases
Bugzilla #1533899
Certificate Problem Report
Quovadis: Insufficient Serial Number Entropy
RESOLVED
INVALID
DarkMatter LLC
AI Summary
The case concerns Quovadis, which identified an issue with insufficient serial number entropy in s/MIME certificates. The CA discovered that one of its hardware security modules (HSM) was using a default setting that did not meet the required entropy levels. Although all TLS certificates were compliant, 118 s/MIME certificates were issued with low entropy. The CA took corrective actions, including changing the entropy settings to meet the required standards. Ultimately, the issue was resolved, and the case was marked as invalid after confirming compliance with Mozilla's policies.
Chronology
- Requested information from Quovadis about s/MIME certificate entropy.
- Received report from Quovadis on s/MIME certs with low entropy.
- Confirmed integration plans and corrective actions for compliance.
- Resolved the case as invalid after confirming compliance.
Participants
Jeremy Rowley
W. Thayer
Ryan Sleevi
External References
Similar Local Cases
QuoVadis: Failure to provide a preliminary report within 24 hours
QuoVadis: EV serialNumber with "none"
QuoVadis: Failure to revoke certificates with compromised private keys
QuoVadis: Issuance of intermediates after 2019-01-01 that do not comply with Mozilla Policy or the BRs
QuoVadis: use of Organisationidentifier field in EV (Pre CABF Ballot SC17)
QuoVadis: Incorrect EV jurisdiction of incorporation information
QuoVadis: failure to reply to CPR in a timely manner
DigiCert: & character in a printableString in ICA