← Certigna cases
Bugzilla #1900654
Certificate Problem Report
Certigna: ARL without reasoncode for recent revoked CA certificates
RESOLVED
FIXED
Certigna
AI Summary
Certigna encountered an issue where four intermediate CA certificates were revoked without including a reason code in the Authority Revocation List (ARL). This non-compliance with Baseline Requirements was identified after a third-party alert. Although no end-entity certificates were affected, the incident highlighted deficiencies in the ARL generation process, which had not been updated since March 2020. Corrective actions were taken, including updates to procedures and a review of compliance requirements.
Chronology
- Four new intermediate CA certificates generated.
- Certificates revoked.
- Incident reported and analyzed.
- ARL generation procedure updated.
- All action items implemented and operational.
Participants
Josselin Allemandou
Mathew Hodson
Ben Wilson
External References
Similar Local Cases
Certigna: Certificate issued with validity period greater than 398-days
Certigna: Multiple Reserved Certificate Policy Identifiers in CA certificates
Certigna: Revocation delay for TLS certificates with basic constraint not marked as critical
Certigna: AIA CA issuer field pointing to PEM encoded cert
Certigna: CRL URL Disclosure
Dhimyotis / Certigna: Intermediate CAs missing audits
Certigna: Precertificate with a validity period greater than 398-days
Certigna: Failure to respond to CPR within 24 hours