← GoDaddy cases
Bugzilla #1924992
Certificate Problem Report
GoDaddy: Does not provide a method for domain owners to revoke their certificates
RESOLVED
FIXED
GoDaddy
AI Summary
The case raised concerns that GoDaddy CA does not offer a method for domain owners to revoke their certificates. GoDaddy responded by stating that revocation requests are defined in their Certificate Policy/Certification Practice Statement (CP/CPS). The discussion highlighted potential ambiguities in the language of the CP/CPS, particularly regarding shared certificates and the revocation process. GoDaddy committed to reviewing and clarifying the language in future updates. The case was ultimately resolved with updates made to the CP/CPS.
Chronology
- Initial report of revocation issues by user.
- Updated language in CP/CPS to clarify revocation practices.
- Case closure confirmed.
Participants
scx32@duck.com
sdeitte@godaddy.com
bwilson@mozilla.com
jsha@letsencrypt.org
amir@aaomidi.com
malcolm.doody@gmail.com
External References
Similar Local Cases
GoDaddy: Intermittent unauthorized OCSP response when certificate is freshly issued
GoDaddy: Domain Validation Reuse Issue
GoDaddy: Failure to revoke key-compromised certificates within 24 hours
GoDaddy: CRL Issuer Mismatch
GoDaddy : CAA checks passed when records contained incorrect variants of godaddy.com or starfieldtech.com
Entrust: CPR was not responded to in 24 hours
Microsoft PKI Services: Failure to Revoke in 5 Days for 1962829
GoDaddy : CAA checks did not properly handle issuewild tag allowing FQDN SANs to be added to wildcard certs