← Internet Security Research Group cases
Bugzilla #1627614 Certificate Problem Report

Let's Encrypt: Failure to revoke key-compromised certificates within 24 hours

RESOLVED FIXED Internet Security Research Group
AI Summary

This case addresses Let's Encrypt's failure to revoke certificates that were reported as compromised within the required 24-hour timeframe. A total of 12 revocation requests were submitted on April 5, 2020, but the revocations were processed 28 minutes past the deadline. The CA acknowledged the issue and has since implemented changes to improve their response to key compromise reports, including better monitoring and alerting mechanisms.

Model: gpt-4o-mini Generated: 2026-06-13 21:12 UTC Confidence: 0.90
Chronology
  1. 12 emails reporting key compromise sent to Let's Encrypt
  2. Certificates were revoked 28 minutes after the 24-hour deadline
Participants
Josh Aas Matt Palmer Ryan Sleevi A. Gabbitas
External References
Original Bugzilla Case crt.sh crt.sh
Similar Local Cases
#1625322 RESOLVED Certificate Problem Report Opened 2020-03-26 · Closed 2023-02-22 · 81% similar
Let's Encrypt: Failure to revoke key-compromised certificates within 24 hours
AI Summary CA Owner
#1715455 RESOLVED Certificate Problem Report Opened 2021-06-09 · Closed 2024-01-10 · 65% similar
Let's Encrypt: certificate lifetimes 90 days plus one second
AI Summary CA Owner
#1619179 RESOLVED Certificate Problem Report Opened 2020-03-02 · Closed 2023-02-22 · 64% similar
Let's Encrypt: Incomplete revocation for CAA rechecking bug
AI Summary CA Owner
#1639801 RESOLVED Certificate Problem Report Opened 2020-05-21 · Closed 2023-02-22 · 62% similar
DigiCert: Failure to revoke key-compromised certificates within 24 hours
AI Summary CA Owner
#1639805 RESOLVED Certificate Problem Report Opened 2020-05-21 · Closed 2023-02-22 · 61% similar
Sectigo: Failure to revoke key-compromised certificates
AI Summary CA Owner
#1640310 RESOLVED Certificate Problem Report Opened 2020-05-22 · Closed 2023-02-22 · 60% similar
GoDaddy: Failure to revoke certificate with compromised key within 24 hours
AI Summary CA Owner
#1639802 RESOLVED Certificate Problem Report Opened 2020-05-21 · Closed 2023-02-22 · 59% similar
DigiCert: Failure to revoke key-compromised certificate
AI Summary CA Owner
#1619359 RESOLVED Certificate Problem Report Opened 2020-03-02 · Closed 2023-02-22 · 59% similar
Sectigo: Failure to provide a preliminary report within 24 hours
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action