SwissSign: Delayed revocation for mispellings in Location for a number of Certificates

SwissSign AG faced a situation involving delayed revocation of certificates due to misspellings in the location field. The revocation was initially delayed to avoid impacting critical infrastructure during the holiday season. SwissSign acknowledged the delay in reporting the incident and has since committed to improving their processes to prevent future occurrences. The case highlights the challenges of balancing compliance with operational realities in critical service contexts.

1. 2019-12-11 SwissSign acknowledges misissuance and triggers revocation process.
2. 2019-12-16 Revocation performed, except for 5 critical infrastructure certificates.
3. 2020-02-05 Incident report requested by Mozilla.
4. 2020-07-15 SwissSign submits updated incident report.
5. 2020-08-31 SwissSign discusses solutions to improve certificate handling for critical customers.