← IdenTrust Services, LLC cases
Bugzilla #1754593
Certificate Problem Report
IdenTrust: Unavailable CRL and OCSP Responders
RESOLVED
FIXED
IdenTrust Services, LLC
AI Summary
IdenTrust experienced a significant outage on February 4, 2022, affecting the availability of their Certificate Revocation List (CRL) and Online Certificate Status Protocol (OCSP) responders for approximately eight hours. The issue was traced back to a high volume of traffic that overwhelmed their firewalls, preventing proper service operation. Immediate troubleshooting efforts were initiated, leading to a resolution by restarting services and renewing OCSP responder certificates. Since the incident, the services have remained stable and available without further interruptions.
Chronology
- Monitoring alerted IdenTrust engineers to a system impact affecting customers.
- Services were confirmed to be operational but later found to require a restart.
- Full recovery of services was achieved after restarting to recognize renewed OCSP responder certificates.
- IdenTrust confirmed consistent availability of CRL and OCSP responders since the incident.
Participants
roots@identrust.com
bwilson@mozilla.com
External References
Similar Local Cases
IdenTrust: Expired CRL served
IdenTrust: Undisclosed Unrevoked ICAs
IdenTrust: TLS Certificates with outdated certificate profile
IdenTrust: Unauthorized OCSP response on a Timestamp certificate
IdenTrust: EV TLS certificate with invalid Jurisdiction state for government entity
IdenTrust: S/MIME certificates with Invalid document Identification Scheme
IdenTrust: OCSP Outage
IdenTrust: Intermitent interruptions to DNS service