← DigiCert cases
Bugzilla #1653475
Certificate Problem Report
DigiCert: Key Size Not Divisible By 8
RESOLVED
DigiCert
AI Summary
DigiCert identified an issue with certificates having RSA key sizes not divisible by 8, affecting 24 certificates. Following a compliance audit prompted by a related Bugzilla report, DigiCert revoked 22 of these certificates and scheduled the revocation of the last two. The CA implemented measures to prevent future occurrences, including a code block for non-compliant key sizes and enhanced scanning processes. The case has been resolved with all problematic certificates addressed.
Chronology
- Code blocking RSA keys not divisible by 8 implemented
- Bug reported by DFN-PKI
- 22 certificates revoked
- Last two certificates logged and revoked
- Bug scheduled for closure
Participants
Jeremy Rowley
B. Wilson
Ryan Sleevi
External References
Similar Local Cases
DigiCert: JOI Issue
DigiCert: Use of forbidden subjectPublicKeyInfo algorithm
DigiCert: Failure to revoke key-compromised certificate
DigiCert: Failure to revoke key-compromised certificates within 24 hours
DigiCert: Issuance of Cert with Compromised Key
DigiCert: & character in a printableString in ICA
DigiCert: Failure to disclose Unconstrained Intermediate within 7 Days
DigiCert: CAA Checking Issue