← eMudhra Technologies Limited cases
Bugzilla #2007297
CCADB Compliance
eMudhra emSign PKI Services: CRL URL Mismatch Between CCADB Disclosure and Issued Certificates
RESOLVED
FIXED
eMudhra Technologies Limited
AI Summary
eMudhra Technologies Limited reported a compliance issue regarding the CRL Distribution Point (CRLDP) URLs in their certificates not matching the disclosures in the CCADB. An external report indicated that certain URLs were not disclosed as required by CCADB Policy. The investigation revealed that while the CRLs were accessible, discrepancies in URL formatting led to the non-compliance. eMudhra has since corrected the discrepancies and implemented measures to ensure future compliance with exact URL matching requirements.
Chronology
- External report received regarding CRL URL mismatch.
- Non-compliance identified and addressed.
- Automated validation implemented for future compliance.
- Incident report closure requested.
Participants
Naveen Kumar ML
External References
Similar Local Cases
eMudhra emSign PKI Services : Delayed Publication of Issuing CA Certificates in CCADB
eMudhra: Failure to Respond to May 2022 Survey
DigiCert: Late CP/CPS CCADB uploads
Microsoft PKI Services: Incomplete Logical Access Review Audit Evidence
IdenTrust: Missing Thumbprints for Intermediate CA certificates In Some Annual Audit Reports
FNMT: Delayed Disclosure of Updated Policy Documents in the CCADB
CFCA: Delayed reporting of intermediate CA certificate
ANF AC: Delayed Disclosure of Updated Policy Documents in CCADB