← DigiCert cases
Bugzilla #1424305 · Certificate Problem Report
DigiCert: Microsoft: Incident report for Microsoft Dynamics incident
DigiCert · RESOLVED
AI Summary
This case involves an incident report concerning a certificate issued by a subordinate CA operated by Microsoft and signed by DigiCert. The incident highlighted several compliance issues, including unclear problem reporting mechanisms and delayed action following a key compromise. DigiCert was tasked with providing a detailed incident report, which they ultimately submitted, outlining the timeline of events and corrective actions taken. The case has been resolved with all actions completed.
Chronology
- Incident reported to DigiCert regarding a compromised certificate.
- DigiCert submitted the incident report to Mozilla.
- All actions related to the incident were completed, marking the case as resolved.
Participants
Wayne Thayer
Jeremy Rowley
Kathleen Wilson
External References
Similar Local Cases
DigiCert: Non-BR-Compliant OCSP Responders
DigiCert: Verizon: "Default City" in Subject:localityName
DigiCert: Failure to supervise ABB Subordinate CA
DigiCert / CTJ: Metadata in OU fields, Reserved IP Address
DigiCert: Certificate Issues Identified on the Mailing List
DigiCert: TI Trust Technologies Global CA issued certificate with no subject alternative name extension
DigiCert: no subject alternative name in Siemens certs
DigiCert: BR 3.2.5 Validation of Authority Failure for OV Certs