← Start Commercial (StartCom) Ltd. cases
Bugzilla #1006479 Certificate Problem Report

StartCom: OCSP responder often returns "unknown" for recently-issued certificates

RESOLVED Start Commercial (StartCom) Ltd.
AI Summary

The StartCom OCSP responder frequently returns 'unknown' for recently issued certificates, causing connection errors for users. This issue arises when certificates are replaced shortly before expiration, leading to delays in the OCSP server's updates. While some browsers may handle this response differently, Firefox's strict rejection of 'unknown' responses can render websites unusable. The case highlights the need for StartCom to improve its OCSP response times to avoid user disruptions.

Model: gpt-4o-mini Generated: 2026-06-13 13:54 UTC Confidence: 0.90
Chronology
  1. Initial report of OCSP issues by Martin von Wittich.
  2. Case assigned to Eddy Nigg for resolution.
  3. Case resolved with a note on potential future trust.
Participants
Martin von Wittich Eddy Nigg Kathleen Wilson Brian Smith
External References
Original Bugzilla Case www.startssl.com
Related Bugzilla IDs Mentioned
#1029147
Similar Local Cases
#611283 RESOLVED Certificate Problem Report Opened 2010-11-11 · Closed 2022-11-14 · 65% similar
StartCom cert not working in Firefox 4 beta
AI Summary CA Owner
#1266942 RESOLVED Certificate Problem Report Opened 2016-04-23 · Closed 2022-11-14 · 63% similar
StartCom: IV without localityName or stateOrProvinceName
AI Summary CA Owner
#1212655 RESOLVED Certificate Problem Report Opened 2015-10-07 · Closed 2022-11-14 · 63% similar
StartCom: public exponent is 1
AI Summary CA Owner
#499178 RESOLVED Certificate Problem Report Opened 2009-06-18 · Closed 2022-11-14 · 63% similar
Clarification requested regarding remediation of StartCom certificate issuance vulnerability
AI Summary CA Owner
#1350615 RESOLVED Certificate Problem Report Opened 2017-03-25 · Closed 2022-11-14 · 56% similar
Camerfirma: Startcom are issuing by proxy using Camerfirma
AI Summary CA Owner
#723722 RESOLVED Certificate Problem Report Opened 2012-02-02 · Closed 2022-11-14 · 54% similar
EV SSL certificate (and OCSP response) for www.camerfirma.com fails to meet EV Guidelines
AI Summary CA Owner
#1029884 RESOLVED Certificate Problem Report Opened 2014-06-24 · Closed 2022-11-14 · 47% similar
StartCom: duplicate serial numbers
AI Summary CA Owner
#1398269 RESOLVED Certificate Problem Report Opened 2017-09-08 · Closed 2023-02-22 · 46% similar
DigiCert: Non-BR-Compliant OCSP Responders
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action