← Izenpe S.A. cases
Bugzilla #1948600
Policy Compliance
IZENPE: Outdated CPS for Izenpe Root
RESOLVED
FIXED
Izenpe S.A.
AI Summary
Izenpe S.A. failed to submit its Certificate Practice Statement (CPS) documents to the CCADB on time, resulting in outdated information. The delay was attributed to miscommunication between teams responsible for the CPS and a misunderstanding of CCADB notifications. Although there was no direct impact on certificates, the lack of timely updates created gaps in documentation. Izenpe has since implemented monitoring and procedural changes to prevent future occurrences and has unified its CPS and Certificate Policy (CP) documents.
Chronology
- Izenpe CPS version 7.7 published.
- Chrome Root Program warns about non-disclosure of CPS.
- New request sent to CCADB to update CPS information.
- New unified CP/CPS document uploaded.
Participants
David Fernandez
Ben Wilson
External References
Similar Local Cases
SECOM: Failed an annual CPS update of Cybertrust Japan (CTJ)
Izenpe: Non-BR-Compliant Certificate Issuance
SECOM: Failed an annual CPS update of Cybertrust Japan (CTJ)
NetLock: Replacement of enduser certificates after the EVGL 1.7.4 self-audit
TWCA: Policy OID not set to indicate the assurance level to the issued certs
NAVER Cloud Trust Services: Failure to Respond to May 2022 Survey
Microsoft PKI Services: Policy Documentation, Failure to update Subscriber Certificate Max Validity Period
KIR S.A.: CP/CPS contains noncompliant DV method, does not specify CAA domains