← Government of Spain, Autoritat de Certificació de la Comunitat Valenciana (ACCV) cases
Bugzilla #1536213 Certificate Misissuance

ACCV: Insufficient serial number entropy

RESOLVED FIXED Government of Spain, Autoritat de Certificació de la Comunitat Valenciana (ACCV)
AI Summary

The Government of Spain's CA, ACCV, identified an issue with insufficient entropy in the serial numbers of approximately 1,800 certificates. The problem was detected on March 12, 2019, leading to a series of corrective actions including a patch to generate 128-bit serial numbers. Despite initial delays in revocation and replacement, ACCV successfully replaced all affected certificates by July 22, 2019. The CA has committed to improving its processes to prevent similar issues in the future.

Model: gpt-4o-mini Generated: 2026-06-13 18:08 UTC Confidence: 0.95
Chronology
  1. ACCV began researching the serial number issue.
  2. ACCV deployed a fix to generate 128-bit serial numbers.
  3. All remaining affected certificates were replaced.
Participants
Jose Amador Ryan Sleevi
External References
Original Bugzilla Case
Similar Local Cases
#1595921 RESOLVED Certificate Misissuance Opened 2019-11-12 · Closed 2023-02-22 · 52% similar
DigiCert: Domain validation skipped
AI Summary CA Owner
#1523186 RESOLVED Certificate Misissuance Opened 2019-01-27 · Closed 2023-02-22 · 52% similar
KIR S.A.: Misissuance - missing OCSP AIA, Validity > 825 days
AI Summary CA Owner
#1534295 RESOLVED Certificate Misissuance Opened 2019-03-11 · Closed 2023-02-22 · 51% similar
Actalis: Insufficient serial number entropy
AI Summary CA Owner
#1481862 RESOLVED Certificate Misissuance Opened 2018-08-08 · Closed 2023-02-22 · 50% similar
Camerfirma: MULTICERT organizationName Too Long
AI Summary CA Owner
#1463975 RESOLVED Certificate Misissuance Opened 2018-05-24 · Closed 2023-02-22 · 50% similar
GRCA: Misissued certificates: Invalid commonName, commonName not in SAN
AI Summary CA Owner
#1535735 RESOLVED Certificate Misissuance Opened 2019-03-15 · Closed 2023-02-22 · 49% similar
Entrust: Issued Certificates to incorrect Organization
AI Summary CA Owner
#1397954 RESOLVED Certificate Misissuance Opened 2017-09-07 · Closed 2023-02-22 · 49% similar
DigiCert / Siemens: Insufficient Serial Number Entropy
AI Summary CA Owner
#1743935 RESOLVED Certificate Misissuance Opened 2021-12-02 · Closed 2023-02-22 · 49% similar
Amazon Trust Services: Misissuance of Subordinate Per CPS
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action