← SSL.com cases
Bugzilla #1927532
Certificate Problem Report
SSL.com: Issuance of certificates using keys previously reported as compromised
RESOLVED
FIXED
SSL.com
AI Summary
SSL.com faced a significant incident involving the issuance of TLS certificates using keys that had been previously reported as compromised. The issue was identified on October 25, 2024, when a Root Store Program representative alerted SSL.com about the mis-issuance, which violated established policies. In response, SSL.com promptly revoked the affected certificates and initiated an internal investigation. The investigation revealed that a manual process for blocking compromised keys was inadequate, leading to a series of corrective actions, including the implementation of automated systems to prevent future occurrences. SSL.com has committed to ongoing improvements in its processes and systems to enhance compliance and security.
Chronology
- SSL.com informed about mis-issuance of certificates.
- Affected certificates revoked within 24 hours.
- Final Incident Report submitted.
- All action items completed and report closure summary provided.
Participants
Rebecca Kelley
Ryan Dickson
Aaron Gable
External References
Similar Local Cases
SSL.com: Delay in publishing OCSP responses
SSL.com: Failure to process CAA records from one SubCA
SSL.com: Expired certificate for a “Valid” Test Website
SSL.com: Entrust API and CAA checking
SSL.com: Revocation process requires submission to a form that is unusable
SSL.com: DCV bypass and issue fake certificates for any MX hostname
SSL.com: Insufficient serial number entropy
SSL.com: Issuance of 1 EV TLS certificate using a Registration/Incorporation Agency not included in our approved public list.