← IdenTrust Services, LLC cases
Bugzilla #1757247
Certificate Problem Report
IdenTrust: Delay Revocation for EV SSL Certificates
RESOLVED
FIXED
IdenTrust Services, LLC
AI Summary
IdenTrust reported a delay in the revocation of 584 active EV TLS certificates that were issued without disclosing the vetting source. Despite initial efforts to revoke these certificates, as of February 25, 2022, not all had been revoked, leading to complications for affected customers. The CA communicated with customers to expedite the revocation process, but some faced challenges due to manual replacement methods. By April 21, 2022, all certificates related to this incident were successfully revoked.
Chronology
- Identified 584 active EV TLS certificates requiring revocation.
- Confirmed that 238 certificates had been revoked.
- All certificates related to the incident were revoked.
Participants
IdenTrust
Tim Hollebeek
External References
Similar Local Cases
IdenTrust: S/MIME Certificates issued without CAB Forum OID
IdenTrust: Test Certificates from cross-signed roots not disclosed in CT Logs
IdenTrust: Failure to Revoke Subscriber Certificates Within 5 days
IdenTrust: Pre-certificates without a final certificate showing OCSP error
IdenTrust: Incorrect Subject Details for HydrantId
IdenTrust: Certificates with Invalid values for stateOrProvinceName
IdenTrust: Discrepancy in values of address fields within CN of SSL Certificates
IdenTrust: OCSP Outage