← certSIGN cases
Bugzilla #1965808
Audit Related
certSIGN: Findings in 2025 ETSI Audit - Audit Incident Report #5 – Conflicting info in CPS
RESOLVED
FIXED
certSIGN
AI Summary
certSIGN reported a finding from the 2025 ETSI audit regarding conflicting information in their Certification Practice Statement (CPS) for DV SSL Certificates. The issue stemmed from a typo that incorrectly listed a domain validation method as valid, while another section stated it was not used. No certificates were affected, and the error was corrected in a subsequent version of the CPS. The incident was resolved with the implementation of additional verification steps to prevent future occurrences.
Chronology
- Non-compliance identified
- Publication of corrected CPS version
- Closure report submitted
Participants
Gabriel PETCU
External References
Similar Local Cases
certSIGN: Findings in 2025 ETSI Audit - Audit Incident Report #3 – Missing certSIGN OID on Terms and Conditions
certSIGN: Findings in 2025 ETSI Audit - Audit Incident Report
certSIGN: Findings in 2025 ETSI Audit - Audit Incident Report #2 – Add test certificates in CPS
certSIGN: Findings in 2023 ETSI Audit for certSIGN ROOT CA G2 - Audit Incident Report
certSIGN: Findings in 2024 ETSI Audit - Audit Incident Report
certSIGN: Findings in 2025 ETSI Audit - Audit Incident Report #1 – Improve clarity in CPS
Preliminary Audit Statements - certSIGN
Network Solutions: 2021 Audit Observation #3