← Netlock cases
Bugzilla #1962426
Policy Compliance
NETLOCK: CA/Browser Forum TLS BR Non-compliance
RESOLVED
FIXED
Netlock
AI Summary
NETLOCK faced a compliance issue when their designated test website served an expired TLS certificate, violating CA/Browser Forum TLS Baseline Requirements. The expired certificate was reported by a community member on April 21, 2025, and was not detected earlier due to inadequate monitoring during a transition to automated workflows. The certificate was replaced by April 28, 2025, and NETLOCK has since implemented new monitoring and operational procedures to prevent future occurrences.
Chronology
- Certificate for test website expired
- Community report received about expired certificate
- New valid certificate issued and deployed
- Updated action items and monitoring implemented
- Incident closure summary provided
Participants
Nikolett Nagy
Zacharias Bjorngren
Walter Marks
Aaron
Roland Kaluha
External References
Similar Local Cases
NETLOCK: did not file a preliminary incident report or respond to a third-party report within the 72-hour timeframe
NETLOCK: Missing Related Incidents section in the bug report
NETLOCK: Expired Test Website Certificate
NETLOCK: Transition Plan for Mozilla Root Store Policy 7.5 by Deadline
NETLOCK: CPS 1.5.2. problem and contact information update
NetLock: Replacement of enduser certificates after the EVGL 1.7.4 self-audit
NetLock: Issuance of intermediates after 2019-01-01 that do not comply with Mozilla Policy
FNMT: Incorrect publication of information for Test Website - Valid