← Google Trust Services LLC cases
Bugzilla #1630040 Certificate Problem Report

Google Trust Services: OCSP serving issue 2020-04-09

RESOLVED FIXED Google Trust Services LLC
AI Summary

Google Trust Services experienced an OCSP serving issue from April 8 to April 9, 2020, where empty OCSP data was served, leading to unauthorized responses. The problem was detected through monitoring, and the root cause was identified quickly. Safeguards have since been implemented to prevent recurrence. The affected CAs were primarily used for custom certificate issuance, and no significant certificate issuance occurred during the incident.

Model: gpt-4o-mini Generated: 2026-06-13 21:20 UTC Confidence: 0.90
Chronology
  1. Scheduled system update begins
  2. Incorrect OCSP archives generated
  3. First production monitoring alert fires
  4. Monitoring confirms all probes are passing
Participants
Andy Warner Ryan Sleevi
External References
Original Bugzilla Case
Similar Local Cases
#1634795 RESOLVED Certificate Problem Report Opened 2020-05-01 · Closed 2023-02-22 · 69% similar
Google Trust Services: Incorrect revocation data temporarily served for GTS Y3 & Y4
AI Summary CA Owner
#1630079 RESOLVED Certificate Problem Report Opened 2020-04-14 · Closed 2023-02-22 · 67% similar
Google Trust Services: Invalid OCSP responses
AI Summary CA Owner
#1706967 RESOLVED Certificate Problem Report Opened 2021-04-22 · Closed 2023-02-22 · 66% similar
Google Trust Services: Forbidden Domain Validation Method 3.2.2.4.10
AI Summary CA Owner
#1678183 RESOLVED Certificate Problem Report Opened 2020-11-19 · Closed 2023-02-22 · 65% similar
Google Trust Services: Invalid ASN.1 encoding of singleExtensions in OCSP responses
AI Summary CA Owner
#1522975 RESOLVED Certificate Problem Report Opened 2019-01-25 · Closed 2023-02-22 · 59% similar
Google Trust Services: Improper OCSP response for intermediate certificate
AI Summary CA Owner
#1581183 RESOLVED Certificate Problem Report Opened 2019-09-13 · Closed 2023-02-22 · 59% similar
Google Trust Services: CRL handling of expired certificates not fully compliant with RFC 5280 Section 3.3
AI Summary CA Owner
#1715421 RESOLVED Certificate Problem Report Opened 2021-06-09 · Closed 2023-02-22 · 58% similar
Google Trust Services: Failure to revoke subscriber certificates within BR timeframe
AI Summary CA Owner
#1979457 RESOLVED Certificate Problem Report Opened 2025-07-25 · Closed 2025-10-22 · 55% similar
Google Trust Services: Missing authorization audit log entry for certificate issuance
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action