← Chunghwa Telecom cases
Bugzilla #1904038
Certificate Problem Report
Chunghwa Telecom: “Test Website - Valid" URL disclosed to CCADB is expired
RESOLVED
FIXED
Chunghwa Telecom
AI Summary
Chunghwa Telecom reported that a URL for a test website (good.epkiov.hinet.net) disclosed to CCADB had been expired for 278 days, which led to non-compliance with TLS BR Section 2.2 and Root Program policies. The root cause was identified as the website administrator ignoring expiration notifications. In response, Chunghwa Telecom has implemented an automatic certificate renewal mechanism and established a multi-role notification system to prevent future occurrences. All action items related to this incident have been completed, and the case is now resolved.
Chronology
- Received notification of expired certificate.
- Completed certificate replacement.
- Closure report submitted.
Participants
Tsung-Min Kuo
Daniel McCarney
Mozilla Team
External References
Similar Local Cases
Chunghwa Telecom: Test Website certificate not revoked
Chunghwa Telecom: Issuance of certificate using keys previously reported as compromised
Chunghwa Telecom: Failure to respond to CPR within 24 hours
Chunghwa Telecom: CA Certificates Published in PEM format
Chunghwa Telecom: OV TLS Server certificate issuance by GTLSCA without proper validation
Chunghwa Telecom: Failure to check restrictive CAA record during Migration
Chunghwa Telecom: TLS Certificates Contains two LocalityName Values in SubjectDN by GTLSCA
Chunghwa Telecom: Controversial Values within Extension (2.5.29.9, subjectDirectoryAttributes)