← IdenTrust Services, LLC cases
Bugzilla #2014590
Certificate Problem Report
IdenTrust: Unauthorized OCSP responses for cross-signed roots
RESOLVED
FIXED
IdenTrust Services, LLC
AI Summary
IdenTrust Services, LLC self-disclosed an incident involving unauthorized OCSP responses for four cross-signed certificates. The issue arose because the corresponding Intermediate Certificate Authorities (ICAs) were not included in the OCSP configuration prior to the certificates being disclosed to CCADB. This oversight led to OCSP checks returning errors. The CA has since completed the necessary actions to rectify the situation and restore proper OCSP functionality.
Chronology
- Non-compliance start date
- Non-compliance identified date
- Non-compliance end date
- Full incident report disclosed
- Incident report closure requested
Participants
IdenTrust
External References
Similar Local Cases
IdenTrust: Test Certificates from cross-signed roots not disclosed in CT Logs
IdenTrust: Expired ICAs CRLs
IdenTrust: CA Certificate not published in DER Encoded Format
IdenTrust: CRL Potential Publication Delay due to Cache
IdenTrust: Expired CRLs
IdenTrust: duplicate Certificate in error flagged by OCSP Watch
Identrust: Root CrossSign, of dedicated Roots, missing EKU
IdenTrust: S/MIME Certificates issued without CAB Forum OID