DigiCert: Apple: Non-compliant Common Name Length

DigiCert reported an incident involving the issuance of certificates with Common Names exceeding the 64-character limit, a violation of RFC 5280. The issue was discovered during a code review on May 15, 2019, leading to the revocation of two certificates and a subsequent investigation. A software fix was deployed on May 22, 2019, to enforce the character limit, and a comprehensive gap analysis was conducted to ensure compliance with relevant standards. The case has been resolved with all necessary remediation steps completed.

1. 2019-05-15 Code review identified non-compliance with CN length.
2. 2019-05-21 Compliance team notified of the issue.
3. 2019-05-22 Software fix deployed to enforce CN length.
4. 2019-12-14 Gap analysis completed, confirming compliance.