← China Financial Certification Authority (CFCA) cases
Bugzilla #2006333 Certificate Misissuance

CFCA: EV Certificates misissued with incorrect businessCategory

RESOLVED FIXED China Financial Certification Authority (CFCA)
AI Summary

The China Financial Certification Authority (CFCA) misissued Extended Validation (EV) certificates to Chinese government entities, incorrectly classifying them as 'Private Organization' instead of 'Government Entity'. This misclassification was due to a logic defect in their mapping system, which failed to accurately identify entity types based on registration authority prefixes. Following a Certificate Problem Report from security researchers, CFCA identified and revoked 43 affected certificates. They have since implemented corrective measures, including updates to their systems and processes to prevent future occurrences.

Model: gpt-4o-mini Generated: 2026-06-13 21:36 UTC Confidence: 0.95
Chronology
  1. First EV certificate with incorrect businessCategory issued.
  2. Non-compliance identified through a Certificate Problem Report.
  3. Revocation of 16 affected certificates initiated.
  4. All 27 additional certificates identified were revoked.
  5. Closure report submitted after all action items completed.
Participants
Michael Songxinlei Zeyu Wang Jianjun Chen
External References
Original Bugzilla Case
Similar Local Cases
#1838371 RESOLVED Certificate Misissuance Opened 2023-06-14 · Closed 2024-01-19 · 53% similar
CFCA: certificate with an incorrect OrganizationName
AI Summary CA Owner
#1949131 RESOLVED Certificate Misissuance Opened 2025-02-19 · Closed 2025-05-08 · 53% similar
CFCA: BasicConstraints are not marked as critical certificates are missing and therefore not revoked
AI Summary CA Owner
#1520299 RESOLVED Certificate Misissuance Opened 2019-01-15 · Closed 2023-02-22 · 45% similar
Hongkong Post / Certizen: Failure to report misissuance
AI Summary CA Owner
#1600114 RESOLVED Certificate Misissuance Opened 2019-11-28 · Closed 2023-02-22 · 45% similar
Camerfirma: EV Certificates issued with wrong Business Category
AI Summary CA Owner
#1714968 RESOLVED Certificate Misissuance Opened 2021-06-07 · Closed 2023-02-22 · 44% similar
GlobalSign: Incorrect RegNumber-Org Type combination
AI Summary CA Owner
#1715929 RESOLVED Certificate Misissuance Opened 2021-06-11 · Closed 2023-02-22 · 44% similar
Sectigo: Incorrect EV businessCategory
AI Summary CA Owner
#1843268 RESOLVED Certificate Misissuance Opened 2023-07-13 · Closed 2024-05-09 · 44% similar
NAVER Cloud Trust Services: OV certificate issued with OU field
AI Summary CA Owner
#1712188 RESOLVED Certificate Misissuance Opened 2021-05-20 · Closed 2023-02-22 · 43% similar
Sectigo: test certificates issued from trusted CA
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action