← Certigna cases
Bugzilla #2007238
Certificate Problem Report
Certigna: CRL URL Disclosure
RESOLVED
FIXED
Certigna
AI Summary
Certigna faced a Certificate Problem Report regarding the disclosure of Certificate Revocation List (CRL) URLs that were not listed in the CCADB. The issue arose because the CCADB portal only allows one CRL URL to be entered, despite the certificates providing two URLs. This limitation led to a potential non-compliance with CCADB policy. Certigna has since reviewed its processes and committed to improving vigilance in reporting CRL URLs.
Chronology
- Generation of CA certificates and publication in CCADB.
- Non-compliance identified by third party.
- Non-compliance resolved.
- Report closure summary published.
Participants
Josselin Allemandou
External References
Similar Local Cases
Certigna: Multiple Reserved Certificate Policy Identifiers in CA certificates
Certigna: Failure to respond to CPR within 24 hours
Certigna: Revocation delay for TLS certificates with basic constraint not marked as critical
Certigna: ARL without reasoncode for recent revoked CA certificates
Certigna: AIA CA issuer field pointing to PEM encoded cert
Dhimyotis / Certigna: Intermediate CAs missing audits
Certigna: Certificate issued with validity period greater than 398-days
Certigna: Precertificate with a validity period greater than 398-days