← Entrust cases
Bugzilla #1520876
Certificate Misissuance
Entrust: Late mis-issue certificate revocation
RESOLVED
FIXED
Entrust
AI Summary
Entrust Datacard faced a late revocation of a mis-issued certificate, which was not revoked within the required 5-day deadline. The issue was identified during the documentation of the revocation process. Following the incident, Entrust updated its procedures to ensure that the revocation deadline is based on the notification time rather than the investigation completion time. The CA has implemented a system to alert managers to ensure timely revocation in the future.
Chronology
- Certificate issued
- Miss-issuance detected and investigation started
- Verification team advised of the process issue
- Miss-issued certificate revoked
Participants
Bruce Morton
Ryan Sleevi
W. Thayer
External References
Similar Local Cases
Entrust: Certificate issued with validity greater than 825-days
Entrust: Issued Certificates to incorrect Organization
Entrust: Certificate Issued with Incorrect Country Code
Entrust: Question marks in certificate O and L fields
Entrust: IP in dnsName
Entrust: SHA-1 Issuance and other misissuance while testing
Entrust: EV Certificates Issued with Business Category "Non-Commercial" when it should have been set to "Private Organization"
E-Tugra: Improper DER results in failure to comply with RFC 5280 - Invalid characters in PrintableString