← Buypass cases
Bugzilla #1598319 Certificate Problem Report

Buypass: intermediate certificates not revoked within BR time period

RESOLVED FIXED Buypass
AI Summary

Buypass reported an incident involving two intermediate certificates that were not revoked within the required BR time period. The issue was identified through discussions on the Mozilla security policy mailing list and was linked to a previous bug report. After analyzing OCSP requests, Buypass managed to reduce the potential impact on customers and set a revocation date for the certificates. The certificates were ultimately revoked on April 21, 2020, and the remediation process was confirmed complete by May 19, 2020.

Model: gpt-4o-mini Generated: 2026-06-13 20:18 UTC Confidence: 0.90
Chronology
  1. First incident reported regarding intermediate certificates not listed in audit reports.
  2. Six of the eight intermediate certificates were revoked.
  3. Clarification on expectations for CA actions regarding intermediate certificates.
  4. Analysis of OCSP requests led to a plan for revocation.
  5. The two intermediate certificates were revoked.
  6. Remediation confirmed complete.
Participants
Mads Henriksveen Ryan Sleevi W. Thayer
External References
Original Bugzilla Case bugzilla.mozilla.org
Similar Local Cases
#1595113 RESOLVED Certificate Problem Report Opened 2019-11-08 · Closed 2023-02-22 · 69% similar
Buypass: Intermediate certificates not listed in audit reports
AI Summary CA Owner
#1628292 RESOLVED Certificate Problem Report Opened 2020-04-08 · Closed 2023-02-22 · 68% similar
Buypass: Failure to revoke PSD2 QWACs within mandated 5 days
AI Summary CA Owner
#1632632 RESOLVED Certificate Problem Report Opened 2020-04-23 · Closed 2023-02-22 · 67% similar
Buypass: Illegal Business Category in a PSD2 QWAC
AI Summary CA Owner
#1654216 RESOLVED Certificate Problem Report Opened 2020-07-21 · Closed 2023-02-22 · 66% similar
Buypass: PSD2 QWAC with RSA modulus not divisible by 8
AI Summary CA Owner
#1626078 RESOLVED Certificate Problem Report Opened 2020-03-30 · Closed 2023-02-22 · 66% similar
Buypass: Missing NCA identifier in cabfOrganizationIdentifier in PSD2 QWACs
AI Summary CA Owner
#1539307 RESOLVED Certificate Problem Report Opened 2019-03-27 · Closed 2023-02-22 · 62% similar
Buypass: Insufficient Serial Number Entropy
AI Summary CA Owner
#1864204 RESOLVED Certificate Problem Report Opened 2023-11-10 · Closed 2024-05-10 · 58% similar
Buypass: TLS certificates with incorrect Subject attribute order
AI Summary CA Owner
#1838421 RESOLVED Certificate Problem Report Opened 2023-06-14 · Closed 2024-06-30 · 58% similar
Buypass: Domain validation method using not allowed domain contact
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action