← DigiCert cases
Bugzilla #1846784
Delayed Revocation
DigiCert: Delayed revocation of IV certificates
RESOLVED
DigiCert
AI Summary
DigiCert experienced a delayed revocation of certain IV certificates due to a software bug that caused anomalies in their data processing. After identifying the issue, they communicated with affected customers, particularly Becton Dickinson, to manage the revocation timeline. The revocation was ultimately completed by August 26, 2023, after ensuring that all necessary replacements were in place. DigiCert has since implemented measures to prevent similar issues in the future.
Chronology
- DigiCert identifies anomalies in IV certificate data.
- Decision made to delay revocation by 3 weeks.
- Final two certificates revoked.
Participants
Martin Sullivan
External References
Similar Local Cases
DigiCert: Delayed revocation of 1910322
Digicert: Delayed Revocation for bug 1894560
DigiCert: Delay of revocation for EV audit inconsistency incident
D-TRUST: Delayed revocation of EV certificates
SSL.com: Delayed revocation of 53 certificates affected by bug #1750631
NetLock: Delayed revocation report connected to ticket 1680378
NETLOCK: Policy Qualifiers other than id-qt-cps is included in TLS certificates - delayed revocation
HARICA: Delayed revocation for non-BR-compliant CA Certificates within 7 days