← Entrust cases
Bugzilla #1890898
Certificate Misissuance
Entrust: Failure to revoke OV TLS - CPS typographical (text placement) error
RESOLVED
FIXED
Entrust
AI Summary
Entrust identified a typographical error in their Certification Practice Statement (CPS) that affected 6,008 OV TLS certificates issued between March 22 and March 26, 2024. Initially, Entrust decided not to revoke these certificates, citing exceptional circumstances. However, after community feedback and discussions with root programs, they acknowledged the misissuance and completed the revocation of all affected certificates by June 22, 2024. The incident highlighted the need for improved incident management and communication processes within Entrust.
Chronology
- Typographical error in CPS discovered.
- Entrust declared intent not to revoke affected certificates.
- All affected certificates revoked.
Participants
Bruce Morton
Ngook Kong
Tim Callan
Ryan Dickson
Amir Aamidi
External References
Similar Local Cases
Entrust: CPS typographical (text placement) error
Entrust: EV TLS Certificate cPSuri missing
Entrust: Issued Certificates to incorrect Organization
Entrust: Business Entity not permitted in CPS
Entrust: S/MIME OrgID Country not matching C field
Entrust: S/MIME certificates lacking OU verification
Entrust: IP in dnsName
NETLOCK: Policy Qualifiers other than id-qt-cps is included in TLS certificates