← Autoridad de Certificacion Firmaprofesional cases
Bugzilla #1649943 Certificate Problem Report

Firmaprofesional: Incorrect OCSP Delegated Responder Certificate

RESOLVED FIXED Autoridad de Certificacion Firmaprofesional
AI Summary

The case involves Firmaprofesional issuing OCSP Delegated Responder certificates without the required 'id-pkix-ocsp-nocheck' response. This was reported by Ryan Sleevi and led to a detailed discussion about the implications and security risks associated with the certificates. Firmaprofesional acknowledged the issue and provided an incident report outlining their awareness and response timeline. They asserted that the main security issue does not affect them due to their control over the keys involved, but they committed to reissuing certificates without the offending EKU and to revoking the problematic ones. The case was resolved with the certificates being fixed and a plan for future compliance established.

Model: gpt-4o-mini Generated: 2026-06-13 21:26 UTC Confidence: 0.90
Chronology
  1. Issue reported to Mozilla's security policy mailing list.
  2. Firmaprofesional publicly acknowledged the issue.
  3. Firmaprofesional outlined steps to resolve the issue.
  4. Firmaprofesional committed to issuing new certificates without the offending EKU.
  5. Bug closed after resolution.
Participants
Ryan Sleevi chemalogo
External References
Original Bugzilla Case www.mail-archive.com bugzilla.mozilla.org crt.sh
Similar Local Cases
#1651637 RESOLVED Certificate Problem Report Opened 2020-07-09 · Closed 2023-02-22 · 59% similar
Firmaprofesional: Failure to revoke ICAs within 7 days: OCSP EKU
AI Summary CA Owner
#1368171 RESOLVED Certificate Problem Report Opened 2017-05-26 · Closed 2024-06-30 · 56% similar
Firmaprofesional: Non-audited, non-technically-constrained intermediate certificates
AI Summary CA Owner
#1649951 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 55% similar
DigiCert: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner
#1649963 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 53% similar
Atos: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner
#1649937 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 53% similar
GlobalSign: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner
#1649961 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 53% similar
Actalis: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner
#1649938 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 52% similar
QuoVadis: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner
#1649962 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 51% similar
SECOM: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action