← Google Trust Services LLC cases
Bugzilla #2031164
Policy Compliance
Google Trust Services: Incomplete CRL Distribution Point URLs in CCADB for GTS Roots
RESOLVED
FIXED
Google Trust Services LLC
AI Summary
Google Trust Services (GTS) reported an incident regarding incomplete Certificate Revocation List (CRL) Distribution Point URLs in the Common CA Database (CCADB). The disclosed URLs for GTS Roots R1-R4 were missing newer, shorter URLs, and an incorrect URL was listed for GlobalSign Root CA R4. This non-compliance with CCADB policy was identified internally and corrected promptly. GTS has since implemented procedural updates to ensure compliance and prevent future occurrences.
Chronology
- Non-compliance identified
- Non-compliance resolved
- Incident report closure requested
Participants
Google Trust Services
External References
Similar Local Cases
Google Trust Services: invalid curve-hash combination
Google Trust Services: Out-of-date CPS disclosure
Google Trust Services: Signing SHA-1 Hash for existing CA certificate with changes in Key Usage
Sectigo / SSL.com: Late disclosure of updated SSL.com CP/CPS to CCADB
IdenTrust: Failure to disclose Unconstrained intermediate Within 7 Days
IdenTrust: Full Incident Report for bug 2014610 was not published within 14 days of discovering the issue
SECOM: Failed an annual CPS update of Cybertrust Japan (CTJ)
Microsoft PKI Services: Firewall log data retention