← Buypass cases
Bugzilla #1539307 Certificate Problem Report

Buypass: Insufficient Serial Number Entropy

RESOLVED FIXED Buypass
AI Summary

Buypass reported an incident involving two intermediate certificates issued in December 2016 that did not comply with the entropy requirements outlined in BR 7.1. The issue was identified following a discussion on the mozilla.dev.security.policy list, leading to immediate actions including the issuance of new compliant certificates and communication with affected customers. The problematic certificates were eventually revoked on June 27, 2019, after a majority of customers had updated to the new certificates.

Model: gpt-4o-mini Generated: 2026-06-13 18:09 UTC Confidence: 1.00
Chronology
  1. Buypass became aware of noncompliance with entropy requirements.
  2. New compliant intermediate certificates were issued.
  3. Deadline set for customers to replace affected certificates.
  4. The two affected intermediate certificates were revoked.
Participants
Wayne Thayer Mads Henriksveen
External References
Original Bugzilla Case crt.sh crt.sh
Similar Local Cases
#1626078 RESOLVED Certificate Problem Report Opened 2020-03-30 · Closed 2023-02-22 · 70% similar
Buypass: Missing NCA identifier in cabfOrganizationIdentifier in PSD2 QWACs
AI Summary CA Owner
#1595113 RESOLVED Certificate Problem Report Opened 2019-11-08 · Closed 2023-02-22 · 70% similar
Buypass: Intermediate certificates not listed in audit reports
AI Summary CA Owner
#1598319 RESOLVED Certificate Problem Report Opened 2019-11-21 · Closed 2023-02-22 · 62% similar
Buypass: intermediate certificates not revoked within BR time period
AI Summary CA Owner
#1864204 RESOLVED Certificate Problem Report Opened 2023-11-10 · Closed 2024-05-10 · 61% similar
Buypass: TLS certificates with incorrect Subject attribute order
AI Summary CA Owner
#1654216 RESOLVED Certificate Problem Report Opened 2020-07-21 · Closed 2023-02-22 · 60% similar
Buypass: PSD2 QWAC with RSA modulus not divisible by 8
AI Summary CA Owner
#1632632 RESOLVED Certificate Problem Report Opened 2020-04-23 · Closed 2023-02-22 · 60% similar
Buypass: Illegal Business Category in a PSD2 QWAC
AI Summary CA Owner
#1628292 RESOLVED Certificate Problem Report Opened 2020-04-08 · Closed 2023-02-22 · 60% similar
Buypass: Failure to revoke PSD2 QWACs within mandated 5 days
AI Summary CA Owner
#1872371 RESOLVED Certificate Problem Report Opened 2023-12-29 · Closed 2024-08-07 · 59% similar
Buypass: Using an external DNS Resolver for DNS lookups
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action