← DigiCert cases
Bugzilla #1974539 · Certificate Problem Report
DigiCert: DCV logging issue
DigiCert · CLOSED
AI Summary
DigiCert identified a logging issue affecting the Domain Control Validation (DCV) process for a small subset of TLS certificates. The problem arose from a race condition in their system, leading to incomplete logging of successful DCV checks for domains flagged as 'high risk'. Affected certificates were revoked within 24 hours of discovery, and the logging issue has since been resolved. DigiCert has implemented enhanced monitoring and adopted an open-source DCV framework to prevent future occurrences.
Chronology
- Bug confirmed; revocation of affected certificates initiated.
- All affected certificates revoked; logging bug fixed.
- Incident closure requested after remediation actions completed.
Participants
DigiCert
Mozilla
Google
External References
Similar Local Cases
DigiCert: Re-use of WHOIS validation shortly after deadline
DigiCert: inconsistent revocation / OCSP / CRL behavior
DigiCert: Some certificates issued with CRLDPs that don’t exactly match CCADB disclosures
DigiCert: Subject Serial Numbers for Non-Commercial Entities
DigiCert: Several non-functioning AIA URLs
DigiCert: OCSP not responding issue
DigiCert: Inconsistent validation information
DigiCert: Issuance of Cert with Compromised Key