← Netlock cases
Bugzilla #1716874
Certificate Problem Report
NetLock: Intermediate CA Certificate Missing from Audit Reports
RESOLVED
FIXED
Netlock
AI Summary
The case involves NetLock's failure to include an intermediate CA certificate in their audit reports, which was capable of issuing TLS server certificates. The issue was identified during a review, leading to a series of communications between NetLock and Mozilla regarding the administrative error. Despite the error being acknowledged as an administrative mistake, the situation escalated to a point where revocation of the intermediate CA was deemed necessary. NetLock has since taken steps to rectify the issue, including revocation of the problematic certificates and issuing new ones.
Chronology
- Issue identified regarding missing intermediate CA certificate in audit report.
- NetLock decided to revoke the intermediate CA due to the unresolved issue.
- Intermediate CA certificate was officially revoked.
Participants
Ben Wilson
Anna Bányai
Zoltán Kővári-Szabó
Győző Drozdy
Ryan Sleevi
External References
Similar Local Cases
Netlock: Problem with NETLOCK's codesigning CA
NetLock: Failure to revoke noncompliant ICA within 7 days
KIR S.A.: DV certificates with locality name, organization name and stateOrProvinceName
NetLock: Non-BR-Compliant Certificate Issuance -- * in not the leftmost position in dnsName
NETLOCK: Disclosed CRL is expired
NETLOCK: SSL certificates with OU field
NETLOCK: CRL Error on CRL Watch of NETLOCK DVCA CRL
IdenTrust: OCSP Signer Certificate Missing No-Check Extension