← D-TRUST cases
Bugzilla #1893610
Certificate Problem Report
D-Trust: Notice to affected Subscriber and person filing CPR not sent within 24 hours
RESOLVED
FIXED
D-TRUST
AI Summary
D-Trust experienced a delay in notifying the affected Subscriber and the individual who filed a Certificate Problem Report (CPR) due to an internal email forwarding issue. The notification was not sent within the required 24-hour timeframe, but the actual revocation of the affected certificates was not delayed. The root cause was identified as a spelling mistake in the email address used for forwarding, which was altered during a system change by their service provider. D-Trust has since implemented corrective measures to prevent future occurrences.
Chronology
- Internal email address had a spelling mistake after changes to email forwarding.
- Email about potential non-conformity sent.
- Email reached relevant department; investigation started.
- All affected customers informed.
- Person who filed CPR informed about revocation.
- Email address for submitting CPRs changed to D-Trust's address.
- Final incident report prepared.
Participants
Enrico Entschew
L. Sahin
B. Wilson
External References
Similar Local Cases
D-Trust: Missed Revocation of TLS certificates affected by Bugzilla 1884714
D-TRUST: Wrong key usage (Key Encipherment)
D-TRUST: Certificate with RSA key where modulus is not divisible by 8
D-Trust: CRL-Entries without required CRL Reason Code
D-Trust: LDAP-URL in Subscriber Certificate Authority Information Access field
D-Trust: "unknown" OCSP response for issued certificates
D-Trust: Expired certificate provided on the CA TLS test website for demonstration of valid certificates
D-Trust: QCStatement with http link of PKI Disclosure Statements