Closed Bug 1451949 Opened 6 years ago Closed 6 years ago

Dhimyotis / Certigna: Intermediate Cert(s) not disclosed in CCADB

Categories

(CA Program :: CA Certificate Compliance, task)

Product:
CA Program
Component:
CA Certificate Compliance
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: kathleen.a.wilson, Assigned: j.allemandou)

Details

(Whiteboard: [ca-compliance] [disclosure-failure]) 

The Dhimyotis/Certigna CA has one or more intermediate certs that are not disclosed in the Common CA Database (CCADB).

https://crt.sh/mozilla-disclosures#undisclosed

Mozilla's Root Store Policy:
https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy#publicly-disclosed-and-audited
"All certificates that are capable of being used to issue new certificates, that are not technically constrained, and that directly or transitively chain to a certificate included in Mozilla’s root program MUST be audited in accordance with Mozilla’s Root Store Policy and MUST be publicly disclosed in the CCADB by the CA that has their certificate included in Mozilla’s root program."

How to disclose intermediate certs in the CCADB:
https://ccadb.org/cas/intermediates#adding-intermediate-certificate-data
Assignee: wthayer → j.allemandou
Unless I'm mistaken, the internal intermediate CA which was not disclosed in the CCADB has been added 4 days ago. I suppose that bug can be closed. Let me know if you need more information. Best regards.
Verified that Dhimyotis no longer has certificates appearing on the report referenced above as 'undisclosed'. Resolving.
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Product: NSS → CA Program
Summary: Dhimyotis/Certigna: Intermediate Cert(s) not disclosed in CCADB → Dhimyotis / Certigna: Intermediate Cert(s) not disclosed in CCADB
Whiteboard: [ca-compliance] → [ca-compliance] [disclosure-failure]
You need to log in before you can comment on or make changes to this bug.