← Apple Inc. cases
Bugzilla #1772644 Technical Compliance

Apple: CRL issuance frequency deviates from CPS in some cases

RESOLVED FIXED Apple Inc.
AI Summary

Apple identified that the Certificate Revocation List (CRL) issuance frequency for its public TLS CAs was configured for 24 hours but was occurring at a 37.5 hour interval in some cases, which deviated from their stated practice in the Apple Public Certificate Policy Statement (CPS). The issue was resolved by creating an additional CRL worker, ensuring compliance with the 24-hour issuance frequency. Apple is also reviewing and updating the CPS to address hard interval settings.

Model: gpt-4o-mini Generated: 2026-06-13 15:13 UTC Confidence: 1.00
Chronology
  1. Issue identified during review of validation services
  2. Fix applied to ensure CRL issuance frequency met CPS requirements
  3. Updated version of the Apple Public CPS posted
Participants
certification_authority@apple.com aaron@letsencrypt.org bwilson@mozilla.com
External References
Original Bugzilla Case bugzilla.mozilla.org images.apple.com www.apple.com images.apple.com
Similar Local Cases
#1738191 RESOLVED Technical Compliance Opened 2021-10-28 · Closed 2023-02-22 · 50% similar
GDCA: CRL validity period exceeds allowed value by one second
AI Summary CA Owner
#1732745 RESOLVED Technical Compliance Opened 2021-09-27 · Closed 2023-02-22 · 48% similar
Certainly: Root CRL validity period exceeds maximum by one second
AI Summary CA Owner
#1848280 RESOLVED Technical Compliance Opened 2023-08-11 · Closed 2023-10-12 · 47% similar
Microsoft PKI Services: 3-Month Access Review Process Failure
AI Summary CA Owner
#1914893 RESOLVED Technical Compliance Opened 2024-08-26 · Closed 2024-09-18 · 47% similar
Amazon Trust Services: CRL not DER-encoded
AI Summary CA Owner
#1793441 RESOLVED Technical Compliance Opened 2022-10-03 · Closed 2023-02-22 · 46% similar
GlobalSign: CRL contains invalid signature algorithm
AI Summary CA Owner
#1848279 RESOLVED Technical Compliance Opened 2023-08-11 · Closed 2023-10-12 · 44% similar
Microsoft PKI Services: Trusted Role Control Failure
AI Summary CA Owner
#2028195 RESOLVED Technical Compliance Opened 2026-03-31 · Closed 2026-04-11 · 42% similar
GoDaddy: inconsistent CP/CPS disclosure
AI Summary CA Owner
#1973034 RESOLVED Technical Compliance Opened 2025-06-19 · Closed 2025-07-02 · 40% similar
Certigna: Finding #3 ETSI Audit – Event log protection beyond seven years shall be improved
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action