← DigiCert cases
Bugzilla #1639801 · Certificate Problem Report
DigiCert: Failure to revoke key-compromised certificates within 24 hours
DigiCert · RESOLVED
AI Summary
DigiCert faced issues in revoking certificates for compromised keys within the mandated 24-hour timeframe. Reports of key compromises were submitted, but revocations were delayed, prompting an investigation into their processes. The CA acknowledged the need for automation in their revocation procedures to prevent future occurrences. They have since implemented a new system to streamline the reporting and revocation of compromised keys.
Chronology
- Case opened by Matt Palmer
- New key compromise reporting system went live
- Bug scheduled for closure
Participants
Matt Palmer
Brenda Bernal
Jeremy Rowley
Ryan Sleevi
Ben Wilson
External References
Similar Local Cases
DigiCert: delayed publication of revocation information
DigiCert: Failure to revoke key-compromised certificate
DigiCert: Failure to revoke within 7 days: OCSP EKU issue
DigiCert: Failure to disclose Unconstrained Intermediate within 7 Days
DigiCert / InfoCert: Insufficient Serial Number Entropy
DigiCert: Certificate Issues Identified on the Mailing List
DigiCert: CAA Checking Issue
DigiCert: Incorrect RegNumber-Org Type combination