← Amazon Trust Services cases
Bugzilla #1713668
CCADB Compliance
Amazon Trust Services: ALV Errors
RESOLVED
FIXED
Amazon Trust Services
AI Summary
Amazon Trust Services reported issues with two unused intermediate certificates that were not included in their audit reports, leading to Audit Letter Validation (ALV) errors. The certificates were created in October 2015, identified for reissue due to validity period issues, and subsequently deleted in December 2015. The CA became aware of the problem during a review of CA Communications in January 2020. They have since updated their audit reports and acknowledged the need for improved compliance with Mozilla's policies. The case was resolved with the completion of revocation of the intermediates.
Chronology
- Amazon Trust Services contacts Mozilla for clarity on ALV errors.
- Amazon Trust Services discusses ALV issues at CA/B Forum.
- Amazon Trust Services completes revocation of the intermediates.
Participants
Trevoli (Amazon Trust Services)
Ryan Sleevi
Andrew Warnke
External References
Similar Local Cases
Amazon Trust Services: Overdue audit statements for intermediate certificates
Entrust: Outdated audit statement for intermediate cert
Consorci AOC: Qualified audit statements
Cybertrust Japan: three test websites not provided
Telia: Intermediate Cert(s) Not Disclosed in CCADB
Sectigo / Web.com: inconsistent disclosure of externally-operated intermediate
Dhimyotis / Certigna: Intermediate Cert(s) not disclosed in CCADB
Swisscom: Missing Audits for Unconstrained Intermediate Certificates