← IdenTrust Services, LLC cases
Bugzilla #1758027 Certificate Problem Report

IdenTrust: Pre-certificates without a final certificate showing OCSP error

RESOLVED FIXED IdenTrust Services, LLC
AI Summary

IdenTrust identified a significant issue involving 4,667 pre-certificates that were issued without corresponding final certificates, leading to unauthorized OCSP responses. The problem was discovered during an internal review on February 23, 2022. IdenTrust has since taken steps to remediate the issue, including updating their TLS issuance process to ensure all pre-certificates are registered in the OCSP database, regardless of whether a final certificate is issued. The issue has been resolved as of May 23, 2022, following the deployment of a permanent solution.

Model: gpt-4o-mini Generated: 2026-06-13 21:17 UTC Confidence: 1.00
Chronology
  1. Discovered pre-certificates with OCSP discrepancies.
  2. Implemented monitoring utility for pre-certificates.
  3. Deployed permanent solution to register pre-certificates in OCSP DB.
  4. Confirmed resolution of the issue.
Participants
IdenTrust Mozilla
External References
Original Bugzilla Case
Similar Local Cases
#1758213 RESOLVED Certificate Problem Report Opened 2022-03-05 · Closed 2023-02-22 · 69% similar
IdenTrust: Failure to provide OCSP responses for valid ICA certificates
AI Summary CA Owner
#1991558 RESOLVED Certificate Problem Report Opened 2025-09-29 · Closed 2026-01-15 · 67% similar
IdenTrust: TLS self audit testing below 3%
AI Summary CA Owner
#1914067 RESOLVED Certificate Problem Report Opened 2024-08-20 · Closed 2024-10-23 · 67% similar
IdenTrust: Expired CRLs
AI Summary CA Owner
#1838315 RESOLVED Certificate Problem Report Opened 2023-06-13 · Closed 2023-10-12 · 67% similar
IdenTrust: Certificate with missing details flagged by OCSP Watch
AI Summary CA Owner
#1897569 RESOLVED Certificate Problem Report Opened 2024-05-17 · Closed 2024-08-23 · 66% similar
IdenTrust: TLS ICA with User Notice in Policy Qualifier
AI Summary CA Owner
#1806728 RESOLVED Certificate Problem Report Opened 2022-12-20 · Closed 2023-05-05 · 66% similar
IdenTrust: Bad OCSP Responses
AI Summary CA Owner
#1775454 RESOLVED Certificate Problem Report Opened 2022-06-22 · Closed 2023-02-22 · 66% similar
IdenTrust: CRL Potential Publication Delay due to Cache
AI Summary CA Owner
#1709192 RESOLVED Certificate Problem Report Opened 2021-05-03 · Closed 2023-02-22 · 66% similar
IdenTrust: Unavailable CRL for IdenTrust ‘DST Root CA X3’.
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action