← Google Trust Services LLC cases
Bugzilla #1581183 Certificate Problem Report

Google Trust Services: CRL handling of expired certificates not fully compliant with RFC 5280 Section 3.3

RESOLVED FIXED Google Trust Services LLC
AI Summary

Google Trust Services identified a compliance issue with their Certificate Revocation List (CRL) generation process, which failed to include entries for expired certificates, violating RFC 5280 Section 3.3. The issue was discovered during an internal review on August 16, 2019, and was promptly addressed with a series of remediation steps. The affected software was patched to ensure expired certificates are included in CRLs for seven days post-expiration. The problem was fully resolved by September 2, 2019, with no significant client impact reported.

Model: gpt-4o-mini Generated: 2026-06-13 19:35 UTC Confidence: 1.00
Chronology
  1. CRL generation issue discovered during internal review.
  2. Full remediation of the issue completed globally.
Participants
Wayne Thayer Andy Warner
External References
Original Bugzilla Case
Similar Local Cases
#1706967 RESOLVED Certificate Problem Report Opened 2021-04-22 · Closed 2023-02-22 · 60% similar
Google Trust Services: Forbidden Domain Validation Method 3.2.2.4.10
AI Summary CA Owner
#1634795 RESOLVED Certificate Problem Report Opened 2020-05-01 · Closed 2023-02-22 · 60% similar
Google Trust Services: Incorrect revocation data temporarily served for GTS Y3 & Y4
AI Summary CA Owner
#1630079 RESOLVED Certificate Problem Report Opened 2020-04-14 · Closed 2023-02-22 · 59% similar
Google Trust Services: Invalid OCSP responses
AI Summary CA Owner
#1630040 RESOLVED Certificate Problem Report Opened 2020-04-14 · Closed 2023-02-22 · 59% similar
Google Trust Services: OCSP serving issue 2020-04-09
AI Summary CA Owner
#1678183 RESOLVED Certificate Problem Report Opened 2020-11-19 · Closed 2023-02-22 · 58% similar
Google Trust Services: Invalid ASN.1 encoding of singleExtensions in OCSP responses
AI Summary CA Owner
#1522975 RESOLVED Certificate Problem Report Opened 2019-01-25 · Closed 2023-02-22 · 58% similar
Google Trust Services: Improper OCSP response for intermediate certificate
AI Summary CA Owner
#1499585 RESOLVED Certificate Problem Report Opened 2018-10-17 · Closed 2023-02-22 · 53% similar
DigiCert: Undisclosed CAs -Federated Trust CA-1
AI Summary CA Owner
#1837519 RESOLVED Certificate Problem Report Opened 2023-06-08 · Closed 2023-11-02 · 51% similar
Google Trust Services: Failure to respond to CPR within 24 hours
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action