Atos: duplicate serial numbers

RESOLVED DUPLICATE of bug 711366

Status

NSS
CA Certificate Root Program
RESOLVED DUPLICATE of bug 711366
10 months ago
6 months ago

People

(Reporter: Rob Stradling, Assigned: Kathleen Wilson)

Tracking

(Blocks: 1 bug)

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: BR Compliance)

(Reporter)

Description

10 months ago
Two intermediate certs for "Atos TrustedRoot CodeSigning-CA 2011" with the same Issuer and Serial Number:
https://crt.sh/?id=49643406
https://crt.sh/?id=18068233

Two intermediate certs for "Atos TrustedRoot Server-CA 2011" with the same Issuer and Serial Number:
https://crt.sh/?id=705899
https://crt.sh/?id=18068212
(Reporter)

Updated

10 months ago
Blocks: 1029147
Whiteboard: BR Compliance
(Assignee)

Comment 1

10 months ago
Martin, 

I realize that these certs have been revoked, and they were created before the first BR Effective Date of 01-Jul-2012.

Please add a comment to this bug to indicate what mechanisms Atos has put in place to ensure that certs cannot be issued with duplicate serial numbers.

Thanks,
Kathleen

Comment 2

10 months ago
This issue was already discussed during our Root Inclusion request:

https://groups.google.com/forum/#!searchin/mozilla.dev.security.policy/atos%7Csort:relevance/mozilla.dev.security.policy/zEfkTiu_Uqk/SkN1oUSykGcJ
(Assignee)

Comment 3

9 months ago
Thank you for the reminder.

This was previously resolved:
https://groups.google.com/d/msg/mozilla.dev.security.policy/zEfkTiu_Uqk/q1fhlyo1bm0J

So I will resolve this bug as a duplicate of Bug #711366 which was the trigger for that discussion.
Status: NEW → RESOLVED
Last Resolved: 9 months ago
Resolution: --- → DUPLICATE
Duplicate of bug: 711366

Updated

6 months ago
Product: mozilla.org → NSS
You need to log in before you can comment on or make changes to this bug.