← Netlock cases
Bugzilla #1734114
Certificate Problem Report
Netlock: Problem with NETLOCK's codesigning CA
RESOLVED
INVALID
Netlock
AI Summary
Netlock's CodeSign CA was found to be partially compliant with CSBR 2.3 Annex A during a recent audit, specifically regarding the RSA modulus size. As a result, Netlock has ceased the issuance of code signing certificates and terminated its code signing business. The case was ultimately resolved as invalid, as Mozilla no longer manages the code signing trust bit.
Chronology
- Audit revealed compliance issues with Netlock's CodeSign CA.
- Netlock confirmed termination of code signing business.
- Case closed as invalid by Mozilla.
Participants
Zoltán Kővári-Szabó
Anna Bányai
External References
Similar Local Cases
NetLock: Intermediate CA Certificate Missing from Audit Reports
NETLOCK: Invalid CT data in issued certs (SABRE.CT misconfiguration)
NetLock: Non-BR-Compliant Certificate Issuance -- * in not the leftmost position in dnsName
NETLOCK: CRL Error on CRL Watch of NETLOCK DVCA CRL
NETLOCK: Disclosed CRL is expired
NETLOCK: SSL certificates with OU field - revocation delay
NETLOCK: Pre-certificates revoked with certificateHold reason
Netlock: CA in AIA in PEM format