← Buypass cases
Bugzilla #1838421 Certificate Problem Report

Buypass: Domain validation method using not allowed domain contact

RESOLVED FIXED Buypass
AI Summary

Buypass reported an incident involving the issuance of a TLS certificate based on an incorrect domain validation method. The validation specialist mistakenly used an email address from the CAA iodef property instead of the correct method. The issue was identified shortly after the certificate was issued on June 13, 2023, leading to its immediate revocation. Buypass has since ceased using external DNS tools for validations and has implemented additional training for their validation specialists to prevent recurrence.

Model: gpt-4o-mini Generated: 2026-06-13 21:25 UTC Confidence: 0.90
Chronology
  1. Validation specialist selected wrong email address from DNS CAA
  2. Affected certificate issued
  3. Certificate revoked after discovering the mistake
  4. Buypass stopped using external DNS tools for validations
Participants
Mads Henriksveen
External References
Original Bugzilla Case crt.sh bugzilla.mozilla.org
Similar Local Cases
#1632632 RESOLVED Certificate Problem Report Opened 2020-04-23 · Closed 2023-02-22 · 64% similar
Buypass: Illegal Business Category in a PSD2 QWAC
AI Summary CA Owner
#1654216 RESOLVED Certificate Problem Report Opened 2020-07-21 · Closed 2023-02-22 · 61% similar
Buypass: PSD2 QWAC with RSA modulus not divisible by 8
AI Summary CA Owner
#1872371 RESOLVED Certificate Problem Report Opened 2023-12-29 · Closed 2024-08-07 · 60% similar
Buypass: Using an external DNS Resolver for DNS lookups
AI Summary CA Owner
#1839305 RESOLVED Certificate Problem Report Opened 2023-06-20 · Closed 2024-06-30 · 60% similar
Buypass: Domain validation method using externally operated DNS tools
AI Summary CA Owner
#1626078 RESOLVED Certificate Problem Report Opened 2020-03-30 · Closed 2023-02-22 · 60% similar
Buypass: Missing NCA identifier in cabfOrganizationIdentifier in PSD2 QWACs
AI Summary CA Owner
#1864204 RESOLVED Certificate Problem Report Opened 2023-11-10 · Closed 2024-05-10 · 59% similar
Buypass: TLS certificates with incorrect Subject attribute order
AI Summary CA Owner
#1539307 RESOLVED Certificate Problem Report Opened 2019-03-27 · Closed 2023-02-22 · 59% similar
Buypass: Insufficient Serial Number Entropy
AI Summary CA Owner
#1598319 RESOLVED Certificate Problem Report Opened 2019-11-21 · Closed 2023-02-22 · 58% similar
Buypass: intermediate certificates not revoked within BR time period
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action