← Amazon Trust Services cases
Bugzilla #1713978 Policy Compliance

Amazon Trust Services: Forbidden Domain Validation Method 3.2.2.4.6

RESOLVED FIXED Amazon Trust Services
AI Summary

The case involves Amazon Trust Services' use of a domain validation method (3.2.2.4.6) that is prohibited by the Baseline Requirements. Concerns were raised regarding the clarity and compliance of their Certification Practice Statement (CPS) and Certification Policy (CP). Amazon acknowledged the feedback and committed to updating their documents to ensure compliance. By July 30, 2021, they planned to clarify their practices regarding validation methods. The issue was resolved when updated CP and CPS documents were published on July 23, 2021.

Model: gpt-4o-mini Generated: 2026-06-13 15:27 UTC Confidence: 0.90
Chronology
  1. Initial report of the forbidden domain validation method.
  2. Amazon committed to updating their CP and CPS.
  3. Amazon published updated CP and CPS documents.
Participants
Andrew Ayer Trevoli (Amazon Trust Services) Ryan Sleevi
External References
Original Bugzilla Case www.amazontrust.com groups.google.com wiki.mozilla.org
Similar Local Cases
#1713976 RESOLVED Policy Compliance Opened 2021-06-02 · Closed 2023-02-22 · 79% similar
Amazon Trust Services: CP/CPS does not specify key compromise methods
AI Summary CA Owner
#1705480 RESOLVED Policy Compliance Opened 2021-04-15 · Closed 2023-02-22 · 66% similar
SECOM: CP/CPS does not clearly specify domain validation methods
AI Summary CA Owner
#1596949 RESOLVED Policy Compliance Opened 2019-11-15 · Closed 2023-02-22 · 60% similar
FNMT: CP/CPS lack CAA processing details
AI Summary CA Owner
#1705904 RESOLVED Policy Compliance Opened 2021-04-17 · Closed 2023-02-22 · 59% similar
KIR S.A.: CP/CPS contains noncompliant DV method, does not specify CAA domains
AI Summary CA Owner
#1454102 RESOLVED Policy Compliance Opened 2018-04-13 · Closed 2022-12-08 · 59% similar
Amazon Trust Services - BR Self Assessment and CP/CPS Updates
AI Summary CA Owner
#1567061 RESOLVED Policy Compliance Opened 2019-07-18 · Closed 2023-02-22 · 58% similar
GoDaddy: inconsistent disclosure of externally-operated intermediate
AI Summary CA Owner
#1596923 RESOLVED Policy Compliance Opened 2019-11-15 · Closed 2024-06-30 · 56% similar
PKIoverheid: KPN CPS lacks CPR problem reporting instructions
AI Summary CA Owner
#1397830 RESOLVED Policy Compliance Opened 2017-09-07 · Closed 2023-02-22 · 54% similar
EDICOM: Signing SHA-1 OCSP responses with unconstrained certificate
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action