← GoDaddy cases
Bugzilla #1572234
Certificate Problem Report
GoDaddy: cross certificate disclosure to CCADB
RESOLVED
FIXED
GoDaddy
AI Summary
GoDaddy identified two cross certificates that were not disclosed to the CCADB during an investigation related to another Bugzilla case. The issue was discovered on August 1, 2019, prompting a review of internal documentation and collaboration with their Webtrust Auditor. Although the certificates were not reported as required, GoDaddy confirmed that they did not need to stop issuing certificates. They have since taken steps to ensure compliance and improve their documentation processes.
Chronology
- Discovery of undisclosed cross certificates during investigation.
- Verification of cross referencing and preparation of incident report.
- Submission of 2019 audit reports pending verification.
Participants
Joanna (jfox@godaddy.com)
W. Thayer (wthayer@fastly.com)
External References
Similar Local Cases
GoDaddy: Insufficient serial number entropy
GoDaddy: Domain Validation Reuse Issue
GoDaddy: failure to revoke underscores
GoDaddy's intermediate CA not in the Mozilla CA bundle
GoDaddy: improperly encoded certificate issued by Go Daddy Secure Certification Authority
GoDaddy: New GoDaddy incorrect issuance bug appears to be regression of 2010 issue
DigiCert: Undisclosed CAs -Federated Trust CA-1
DigiCert: Random value in CNAME without underscore prefix