← China Financial Certification Authority (CFCA) cases
Bugzilla #1888882 Delayed Revocation

CFCA: Delayed revocation of TLS certificates(basicConstraints extension not marked as critical)

CLOSED FIXED China Financial Certification Authority (CFCA)
AI Summary

The China Financial Certification Authority (CFCA) faced challenges in revoking 2,098 TLS certificates due to the basicConstraints extension not being marked as critical. Although CFCA initiated revocation within the required timeframe, they ultimately failed to revoke all affected certificates on time, citing issues such as customer contact difficulties and regulatory constraints. As of the latest updates, CFCA has revoked 2,070 certificates and has committed to improving their processes to ensure timely revocation in the future.

Model: gpt-4o-mini Generated: 2026-06-13 21:33 UTC Confidence: 0.90
Chronology
  1. Initial email reminder sent to CFCA regarding certificate issues.
  2. CFCA reports 1,409 certificates revoked, with 689 remaining.
  3. Final remaining certificates revoked.
  4. CFCA submits closure summary and commits to timely revocation.
Participants
Gao Fei Tim Callan Ryan
External References
Original Bugzilla Case
Similar Local Cases
#1793059 RESOLVED Delayed Revocation Opened 2022-09-30 · Closed 2023-06-30 · 59% similar
CFCA: The delay in revocation of ICA
AI Summary CA Owner
#1887705 RESOLVED Delayed Revocation Opened 2024-03-25 · Closed 2024-09-12 · 52% similar
Entrust: Delayed revocation of clientAuth TLS Certificates without serverAuth EKU
AI Summary CA Owner
#1887888 RESOLVED Delayed Revocation Opened 2024-03-26 · Closed 2025-02-28 · 52% similar
Hongkong Post: Delayed revocation of TLS certificates with basicConstraints not marked as critical
AI Summary CA Owner
#1877388 RESOLVED Delayed Revocation Opened 2024-01-30 · Closed 2025-03-14 · 49% similar
Telekom Security: Revocation delay for TLS certificates with basicConstraints not marked as critical
AI Summary CA Owner
#1887110 RESOLVED Delayed Revocation Opened 2024-03-22 · Closed 2025-02-14 · 49% similar
Microsec: Delayed revocation of the misissued certificates
AI Summary CA Owner
#1886665 RESOLVED Delayed Revocation Opened 2024-03-21 · Closed 2025-02-28 · 48% similar
Hongkong Post: Delayed revocation of TLS certificates with Certificate Policies extension problem
AI Summary CA Owner
#1896053 RESOLVED Delayed Revocation Opened 2024-05-10 · Closed 2025-07-16 · 47% similar
Digicert: Delayed Revocation for bug 1894560
AI Summary CA Owner
#1872738 RESOLVED Delayed Revocation Opened 2024-01-02 · Closed 2025-02-14 · 47% similar
Buypass: Delayed revocation of TLS certificates
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action