← Microsoft Corporation cases
Bugzilla #1970968 Certificate Problem Report

Microsoft PKI Services: Incorrect Revocation Reason Code

RESOLVED FIXED Microsoft Corporation
AI Summary

Microsoft PKI Services incorrectly selected the revocation reason code 'affiliationChanged' instead of 'superseded' while revoking a batch of 25,000 certificates on June 5, 2025. This error was identified shortly after the revocation, leading to an internal incident review. The root cause was traced to the revocation tooling defaulting to 'affiliationChanged' as the pre-selected option, which was not adequately checked by peer reviewers. Remediation actions have been completed, including updating the revocation tooling and internal procedures to prevent future occurrences.

Model: gpt-4o-mini Generated: 2026-06-13 21:21 UTC Confidence: 1.00
Chronology
  1. Revocation batch executed with incorrect reason code.
  2. Non-compliance identified and internal incident review initiated.
  3. Remediation actions completed.
  4. Incident report closure requested.
Participants
CentralPKI@microsoft.com
External References
Original Bugzilla Case bugzilla.mozilla.org
Related Bugzilla IDs Mentioned
#1965612
Similar Local Cases
#2026452 RESOLVED Certificate Problem Report Opened 2026-03-26 · Closed 2026-04-22 · 60% similar
Microsoft PKI Services: Failure to publish Full Incident Report for Bugzilla 2021175 within 14 days
AI Summary CA Owner
#2009541 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-11 · 58% similar
Microsoft PKI Services: Failure to report within 72 hrs - Sample Site Certs Expired
AI Summary CA Owner
#2009539 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-17 · 58% similar
Microsoft PKI Services: Improper Disclosure of CRLs – IDP – Existing CAs
AI Summary CA Owner
#2008847 RESOLVED Certificate Problem Report Opened 2026-01-06 · Closed 2026-02-17 · 58% similar
Microsoft PKI Services: Sample Site Certificates expired
AI Summary CA Owner
#2034251 RESOLVED Certificate Problem Report Opened 2026-04-22 · Closed 2026-05-13 · 57% similar
Microsoft PKI Services: Failure to Update Full Incident Report within 14 days of discovering new root cause
AI Summary CA Owner
#2009545 RESOLVED Certificate Problem Report Opened 2026-01-10 · Closed 2026-02-11 · 57% similar
Microsoft PKI Services: Improper Disclosure of CRLs – Protocol Scheme
AI Summary CA Owner
#1974592 RESOLVED Certificate Problem Report Opened 2025-06-28 · Closed 2025-08-30 · 57% similar
Microsoft PKI Services: Pre-Sign Linting Validation did not occur in ICA creation
AI Summary CA Owner
#1965612 RESOLVED Certificate Problem Report Opened 2025-05-10 · Closed 2026-05-04 · 57% similar
Microsoft PKI Services: Failure to Revoke in 5 Days for 1962829
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action