← DigiCert cases
Bugzilla #1875205
Certificate Problem Report
Digicert: SMIME certs missing State in Org ID
RESOLVED
DigiCert
AI Summary
DigiCert identified an issue where 240 SMIME certificates lacked the required state identifier in their Organization IDs. This was discovered during an internal audit, leading to the revocation of all affected certificates. The root cause was traced back to a manual data entry error that occurred when the SMIME Baseline Requirements were implemented. DigiCert has since automated the OrgID entry process to prevent future occurrences.
Chronology
- SMIME BRs require OrgIDs.
- Internal audit discovered missing state identifier.
- Final certificate revoked.
- Bug posted.
Participants
Martin Sullivan
External References
Similar Local Cases
DigiCert: Incorrect Org ID Scheme in S/MIME
DigiCert: Typo in TLS Org Name
DigiCert: TLS certificates with incorrect policy OID
DigiCert: Inconsistent validation information
DigiCert: 4 CRLs unavailable or not responding
DigiCert: Certificates issued inconsistent with S/MIME BR v1.0.1
DigiCert: Sub CA with EV OIDs without audit report
DigiCert: Incorrect OrgID in S/MIME certificates for one customer