← D-TRUST cases
Bugzilla #2023458 Certificate Problem Report

D-Trust: TLS Precertificates Exceeding the Maximum Validity Period Allowed by the TLS Baseline Requirements

RESOLVED FIXED D-TRUST
AI Summary

D-Trust identified that 19 TLS precertificates were issued with a validity period exceeding the maximum allowed validity of 200 days as defined in the TLS Baseline Requirements. The issue was detected internally during automated linting checks, and all affected precertificates were revoked promptly after identification. The incident was classified as a compliance violation under the CA/Browser Forum Baseline Requirements. D-Trust has committed to addressing procedural failures in their QA deployment and approval processes to prevent recurrence.

Model: gpt-4o-mini Generated: 2026-06-13 21:35 UTC Confidence: 0.90
Chronology
  1. Non-compliance identified and affected precertificates revoked.
  2. Bugzilla incident 2023458 opened.
  3. Final call for comments on the incident report.
Participants
Enrico Entschew Dimitris Zacharopoulos Rob Ben Wilson Moritz Schaal Andrew Ayer Frank Meissen
External References
Original Bugzilla Case
Similar Local Cases
#2029013 ASSIGNED Certificate Problem Report Opened 2026-04-02 Still Open · 66% similar
D-Trust: Missing Pre-Signing Linting for TLS Issuance
AI Summary CA Owner
#1939809 RESOLVED Certificate Problem Report Opened 2025-01-03 · Closed 2025-03-21 · 66% similar
D-Trust: QCStatement with http link of PKI Disclosure Statements
AI Summary CA Owner
#1879529 RESOLVED Certificate Problem Report Opened 2024-02-09 · Closed 2024-04-06 · 64% similar
D-Trust: "unknown" OCSP response for issued certificates
AI Summary CA Owner
#1815534 RESOLVED Certificate Problem Report Opened 2023-02-07 · Closed 2024-04-17 · 62% similar
e-commerce monitoring GmbH: SCT in precertificate
AI Summary CA Owner
#1691117 RESOLVED Certificate Problem Report Opened 2021-02-05 · Closed 2023-02-22 · 60% similar
D-TRUST: Certificate with RSA key where modulus is not divisible by 8
AI Summary CA Owner
#1567588 RESOLVED Certificate Problem Report Opened 2019-07-19 · Closed 2023-02-22 · 59% similar
D-TRUST: incorrectly formatted businessCategory entry
AI Summary CA Owner
#1884714 RESOLVED Certificate Problem Report Opened 2024-03-11 · Closed 2024-09-13 · 59% similar
D-Trust: LDAP-URL in Subscriber Certificate Authority Information Access field
AI Summary CA Owner
#2037000 ASSIGNED Certificate Problem Report Opened 2026-05-05 Still Open · 58% similar
D-Trust: Missing Pre-Sign Linting for S/MIME Issuing CAs
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action