← Asseco Data Systems S.A. cases
Bugzilla #2050850 Ccadb Disclosure Issue Repository Issue Externally Reported Incident

Asseco DS / Certum: HTTP 404 returned by CRL Distribution Point URLs for six pre-inclusion Root CAs

ASSIGNED Asseco Data Systems S.A.
This summary was auto-generated by AI and revised by me when needed — accuracy improves with each update. Always refer to the official Bugzilla thread as the authoritative source. If you spot an inaccuracy, let me know via the contact form.
AI Summary

The Certum Compliance Team opened this bug after becoming aware of a third-party report about six CRL Distribution Point URLs that currently return HTTP 404. The report raised a concern that the presence of these URLs in CCADB may be inconsistent with CCADB Policy. The affected root CAs are described as being in a pre-inclusion phase: they have not yet been submitted to any Root Program for inclusion and are not currently trusted by any Root Store. The team stated that, as part of its internal rollout process, CCADB records are created before Root Inclusion Requests are submitted, while the CRL infrastructure is scheduled to become operational before the roots are submitted for public trust. Based on its assessment to date, the team said it has not identified evidence of non-compliance with the CA/Browser Forum Baseline Requirements or CCADB Policy. The team is documenting the report and reviewing whether changes to its deployment process or the timing of populating CCADB records would improve clarity and avoid similar reports in the future.

Model: gpt-5.4-nano Generated: 2026-06-26 17:46 UTC Confidence: 0.78 1 comment
Chronology
  1. Certum Compliance Team became aware of a third-party report that six CRL Distribution Point URLs return HTTP 404 while the related root CAs are in pre-inclusion.
Thread Activity
  1. kateryna.aleksieieva@assecods.pl — Opened a preliminary incident report describing the 404-returning CRL URLs, the third-party concern about CCADB consistency, and stated no evidence of CCADB/BR non-compliance was found so far while reviewing process/timing changes.
Participants
kateryna.aleksieieva@assecods.pl
External References
Original Bugzilla Case
Similar Local Cases
#2049012 ASSIGNED Ccadb Disclosure Issue Repository Issue Incident Audit Document Opened 2026-06-19 Still Open · 67% similar
FNMT: Inaccuracy in CRL URL in CCADB
AI Summary CA Owner
#2050383 ASSIGNED Incident Problem Reporting Failure Ccadb Disclosure Issue Opened 2026-06-25 Still Open · 59% similar
ANF AC: Incident Report - OCSP "unknown" response for CT precertificate
AI Summary CA Owner
#2010885 RESOLVED Ccadb Disclosure Issue Opened 2026-01-16 · Closed 2026-03-05 · 59% similar
Sectigo: Inaccuracy of CCADB-Disclosed URL for eIDAS CP/CPS
AI Summary CA Owner
#2007098 RESOLVED Repository Issue Opened 2025-12-19 · Closed 2026-02-12 · 59% similar
GlobalSign: misalignment of CRL URL in CCADB with issued certificates
AI Summary CA Owner
#2012934 RESOLVED Ccadb Metadata Update Repository Issue Opened 2026-01-28 · Closed 2026-02-26 · 59% similar
Telia: Inccorrect CRL URL on a Root CA record in CCADB
AI Summary CA Owner
#1567061 RESOLVED Self Reported Incident Repository Issue Opened 2019-07-18 · Closed 2023-02-22 · 59% similar
GoDaddy: inconsistent disclosure of externally-operated intermediate
AI Summary CA Owner
#2007066 RESOLVED Ccadb Metadata Update Repository Issue Opened 2025-12-19 · Closed 2026-01-20 · 59% similar
Disig: Missing CA Disig R2I2 Certification Service Full CRL URLs in CCADB
AI Summary CA Owner
#2047866 ASSIGNED Ccadb Disclosure Issue Ccadb Metadata Update Opened 2026-06-16 Still Open · 58% similar
certSIGN: incorrect URL in CCADB
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action