← DigiCert cases
Bugzilla #1518555 · Certificate Problem Report
DigiCert: Use of forbidden subjectPublicKeyInfo algorithm
DigiCert · RESOLVED
AI Summary
DigiCert faced issues related to the use of the forbidden P-521 algorithm in certificates issued after the effective date of policy 2.4. The CA was prompted to provide an incident report and took steps to block issuance of these certificates. The resolution involved patching the CA to prevent the use of P-521 for publicly trusted certificates, and DigiCert has since implemented a compliance team to monitor policy changes more effectively.
Chronology
- Bug reported regarding use of forbidden algorithm
- DigiCert acknowledged the issue and began investigating
- DigiCert provided details on remediation steps
- Case marked as resolved
Participants
Ryan Sleevi
Jeremy Rowley
External References
Similar Local Cases
DigiCert: Key Size Not Divisible By 8
DigiCert / CTJ: Metadata in OU fields, Reserved IP Address
DigiCert / InfoCert: Insufficient Serial Number Entropy
DigiCert: delayed publication of revocation information
DigiCert: Issuance of Cert with Compromised Key
DigiCert: JOI Issue
DigiCert: Underscores - Ericsson
DigiCert: OCSP services returns 1 byte