← Microsoft Corporation cases
Bugzilla #1700809 Policy Compliance

Microsoft PKI Services: Failure to disclose Unconstrained Intermediate within 7 Days

RESOLVED FIXED Microsoft Corporation
AI Summary

Microsoft Corporation faced a compliance issue regarding the timely disclosure of new intermediate certificates. The problem was identified when DigiCert reported the failure to disclose two new Issuing CAs within the required 7-day timeframe. Microsoft acknowledged the oversight as a process issue and has since updated their procedures to ensure compliance with Mozilla's Root Store Policy. They have committed to improving their documentation and are exploring automation options to prevent future occurrences.

Model: gpt-4o-mini Generated: 2026-06-13 21:14 UTC Confidence: 0.95
Chronology
  1. Issue reported by DigiCert via email.
  2. Microsoft confirmed the issue and updated CCADB with new CA certificates.
  3. Microsoft discussed potential automation solutions with DigiCert and Mozilla.
Participants
John Mason Ryan Sleevi Dimitris Zacharopoulos Brett Wilson
External References
Original Bugzilla Case crt.sh github.com github.com
Similar Local Cases
#1693930 RESOLVED Policy Compliance Opened 2021-02-20 · Closed 2023-02-22 · 69% similar
Microsoft PKI Services: Policy Documentation, Failure to update Subscriber Certificate Max Validity Period
AI Summary CA Owner
#1693932 RESOLVED Policy Compliance Opened 2021-02-20 · Closed 2023-02-22 · 68% similar
Microsoft PKI Services: Policy Documentation, Failure to update Domain Validation Method
AI Summary CA Owner
#1742195 RESOLVED Policy Compliance Opened 2021-11-20 · Closed 2023-02-22 · 61% similar
Microsoft PKI Services: Failure to disclose Revocation of Intermediate CAs within 7 Days
AI Summary CA Owner
#1817023 RESOLVED Policy Compliance Opened 2023-02-15 · Closed 2024-05-09 · 55% similar
Microsoft PKI Services: Failure to modify policy documents within 365 days
AI Summary CA Owner
#1717001 RESOLVED Policy Compliance Opened 2021-06-17 · Closed 2022-11-14 · 54% similar
Disig: CPS does not refer to BR domain validation methods
AI Summary CA Owner
#1545208 RESOLVED Policy Compliance Opened 2019-04-17 · Closed 2023-02-22 · 52% similar
Sectigo: Missing Changelog in CPS
AI Summary CA Owner
#1658995 RESOLVED Policy Compliance Opened 2020-08-13 · Closed 2024-05-09 · 52% similar
Microsoft PKI Services: Firewall log data retention
AI Summary CA Owner
#1705480 RESOLVED Policy Compliance Opened 2021-04-15 · Closed 2023-02-22 · 51% similar
SECOM: CP/CPS does not clearly specify domain validation methods
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action