← Actalis cases
Bugzilla #1649961 Certificate Problem Report

Actalis: Incorrect OCSP Delegated Responder Certificate

RESOLVED FIXED Actalis
AI Summary

Actalis was reported for issuing OCSP Delegated Responder certificates without the required 'id-pkix-ocsp-nocheck' extension, violating Baseline Requirements. The issue was identified through a post on the Mozilla dev-security-policy mailing list. Actalis initially disputed the claim but later acknowledged the problem and initiated an investigation. They committed to revoking the affected certificates and implementing monitoring controls to prevent future occurrences. The case was resolved with a plan for revocation and key destruction by November 2020.

Model: gpt-4o-mini Generated: 2026-06-13 21:23 UTC Confidence: 0.90
Chronology
  1. Issue reported on Mozilla mailing list.
  2. Actalis begins investigation.
  3. Preliminary incident report submitted.
  4. Monitoring controls discussed.
  5. Bug closed, further discussion consolidated under related bug.
Participants
Ryan Sleevi Adriano Santoni Ben Wilson
External References
Original Bugzilla Case www.mail-archive.com crt.sh wiki.mozilla.org
Related Bugzilla IDs Mentioned
#1651651
Similar Local Cases
#1648997 RESOLVED Certificate Problem Report Opened 2020-06-28 · Closed 2023-02-22 · 67% similar
Actalis: inaccurate value in stateOrProvinceName
AI Summary CA Owner
#1906690 RESOLVED Certificate Problem Report Opened 2024-07-08 · Closed 2025-03-18 · 65% similar
Actalis: CRL distribution point with ldap scheme
AI Summary CA Owner
#1651651 RESOLVED Certificate Problem Report Opened 2020-07-09 · Closed 2023-02-22 · 65% similar
Actalis: Failure to revoke within 7 days: OCSP EKU issue
AI Summary CA Owner
#1914419 RESOLVED Certificate Problem Report Opened 2024-08-22 · Closed 2025-02-04 · 59% similar
Actalis: Use of CRLReason Code in Certificate Revocation
AI Summary CA Owner
#1640310 RESOLVED Certificate Problem Report Opened 2020-05-22 · Closed 2023-02-22 · 59% similar
GoDaddy: Failure to revoke certificate with compromised key within 24 hours
AI Summary CA Owner
#1523680 RESOLVED Certificate Problem Report Opened 2019-01-29 · Closed 2023-02-22 · 59% similar
Actalis: Non BR Compliant OCSP Responder
AI Summary CA Owner
#1973238 RESOLVED Certificate Problem Report Opened 2025-06-20 · Closed 2025-09-24 · 58% similar
Actalis: incorrect CP/S Last Update date in CCADB
AI Summary CA Owner
#1943379 RESOLVED Certificate Problem Report Opened 2025-01-23 · Closed 2025-05-08 · 58% similar
Actalis: CRL with duplicate serial number in revokedCertificates
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action