← GlobalSign nv-sa cases
Bugzilla #2034360
CCADB Compliance
GlobalSign: CRL Distribution Point URLs incomplete for Cross-Certified Root CAs in CCADB records
RESOLVED
FIXED
GlobalSign nv-sa
AI Summary
GlobalSign reported an incident where the CRL Distribution Point URLs for six Cross-Certified Root CAs were incomplete in the CCADB compared to their Self-Signed counterparts. This non-compliance was identified during an internal review, and the records were updated promptly. The root cause was attributed to inadequate change management procedures for updating Cross-Certified CA records. GlobalSign has since implemented monitoring checks and updated their procedures to prevent future occurrences.
Chronology
- Non-compliance start date identified
- Non-compliance identified during internal review
- CCADB records updated
- Deployment of CCADB monitoring completed
- Report closure summary provided
Participants
Christophe Bonjean
External References
Similar Local Cases
FNMT: Delayed Disclosure of Updated Policy Documents in the CCADB
IdenTrust: Delay in updating a Bug 2014609 - Next update
IdenTrust: Delay in updating a Bug 2016585 - Action item
DigiCert: Late CP/CPS CCADB uploads
Microsoft PKI Services: Incomplete Logical Access Review Audit Evidence
CFCA: Failed to follow Report lifecycle rule to respond within 7 days
ANF AC: Delayed Disclosure of Updated Policy Documents in CCADB
Sectigo: Inadequate vulnerability scanning and patching