← Autoridad de Certificacion Firmaprofesional cases
Bugzilla #1889420
Certificate Problem Report
Firmaprofesional: Policy Qualifiers other than id-qt-cps present for certificate
RESOLVED
FIXED
Autoridad de Certificacion Firmaprofesional
AI Summary
Firmaprofesional was notified by Sectigo on April 2, 2024, regarding the issuance of a TLS certificate that did not comply with the Baseline Requirements. An internal investigation revealed that 499 certificates issued between September and December 2023 contained policy qualifiers that violated BR 7.1.2.7.9. The company promptly revoked the non-compliant certificate and initiated corrective actions. Fortunately, there was no impact on security or usability for clients. The case has been resolved with all but one certificate successfully revoked.
Chronology
- Sectigo notified Firmaprofesional of non-compliance.
- The non-compliant certificate was revoked.
- 498 of 499 certificates were revoked.
- The case was confirmed for closure.
Participants
ext-antoni.camon@logalty.com
bwilson@mozilla.com
External References
Similar Local Cases
Firmaprofesional: Incorrect publication of information for "Test Website - Revoked" URL in the CCADB.
Firmaprofesional: incorrect reserved CA/B Forum OIDs in certificates
Firmaprofesional: Delayed revocation disclosure of TLS Subordinate CA certificate Secure Web 2024 in CCADB
Firmaprofesional: Delayed preliminary response under BR 4.9.5 (Bug #2009941)
Firmaprofesional / SIGNE: No BR Audit for intermediate CA technically capable of issuing TLS certs
Firmaprofesional: AC Firmaprofesional - INFRAESTRUCTURA insufficient serial number entropy
Add Firmaprofesional subCA Santander Digital Signature to OneCRL
Firmaprofesional: Undisclosed Intermediate certificate SDS