Dhimyotis / Certigna: Failure to revoke in the timeline specified by the BRs
Categories
(CA Program :: CA Certificate Compliance, task)
Tracking
(Not tracked)
People
(Reporter: ryan.sleevi, Assigned: r.delval)
Details
(Whiteboard: [ca-compliance] [leaf-revocation-delay])
In Bug 1674082 - Dhimyotis/Certigna: Certificates issued with validity periods greater than 398-days, Dhimyotis/Certigna stated:
The Certificates Managers for the relevant certificates were notified of our wish to revoke their certificates on September 29. Almost half of the certificates were revoked before the October 2. However, it turns out that many of the remaining certificates were already deployed on government teleservices for which a revocation would have had an impact on these services, sometimes managed by externals providers.
Here is the revocation history for the 76 affected certificates and pre-certificates:
1 certificate was already revoked on September 9;
28 certificates were revoked on D + 4 ;
17 certificates were revoked before D + 10;
30 certificates were revoked before D + 25.
This bug is to track the delay in revocation and the steps taken to ensure there are no future delays in revocation.
Reporter | ||
Comment 1•4 years ago
|
||
Er, sorry, Bug 1674082 was itself the revocation delay bug for Bug 1667744, and the incident report was just so badly formatted that it wasn't obvious as such.
Updated•2 years ago
|
Updated•2 years ago
|
Updated•2 years ago
|
Description
•