← DigiCert cases
Bugzilla #1744795 · Certificate Problem Report
DigiCert: Issuance of certs with weak keys (ROCA)
DigiCert · RESOLVED
AI Summary
DigiCert faced an incident involving the issuance of certificates with weak keys affected by the ROCA vulnerability. The issue was reported on December 2, 2021, leading to the revocation of 12 certificates. DigiCert implemented a scanning tool to detect affected keys and has since deployed checks to prevent future occurrences. The case was resolved with the implementation of necessary security measures.
Chronology
- First report of affected certificates received.
- Revocation of six reported certificates.
- Completion of scans; no additional affected certificates found.
- Deployment of checks to block affected keys.
Participants
Jeremy Rowley
Rob Wilson
External References
Similar Local Cases
DigiCert: Issuance of Cert with Compromised Key
DigiCert: improper use of domain validation method
DigiCert: BR 3.2.5 Validation of Authority Failure for OV Certs
DigiCert / InfoCert: Insufficient Serial Number Entropy
DigiCert: Key Size Not Divisible By 8
DigiCert: Onion Certs
DigiCert: Failure to find and revoke key-compromised certificates within 24 hours
DigiCert: JOI Issue