Closed Bug 1685142 Opened 4 years ago Closed 4 years ago

Dhimyotis / Certigna: Failure to revoke in the timeline specified by the BRs

Categories

(CA Program :: CA Certificate Compliance, task)

Product:
CA Program
Component:
CA Certificate Compliance
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 1674082

People

(Reporter: ryan.sleevi, Assigned: r.delval)

Details

(Whiteboard: [ca-compliance] [leaf-revocation-delay])

In Bug 1674082 - Dhimyotis/Certigna: Certificates issued with validity periods greater than 398-days, Dhimyotis/Certigna stated:

The Certificates Managers for the relevant certificates were notified of our wish to revoke their certificates on September 29. Almost half of the certificates were revoked before the October 2. However, it turns out that many of the remaining certificates were already deployed on government teleservices for which a revocation would have had an impact on these services, sometimes managed by externals providers.

Here is the revocation history for the 76 affected certificates and pre-certificates:

1 certificate was already revoked on September 9;
28 certificates were revoked on D + 4 ;
17 certificates were revoked before D + 10;
30 certificates were revoked before D + 25.

This bug is to track the delay in revocation and the steps taken to ensure there are no future delays in revocation.

Er, sorry, Bug 1674082 was itself the revocation delay bug for Bug 1667744, and the incident report was just so badly formatted that it wasn't obvious as such.

Status: ASSIGNED → RESOLVED
Closed: 4 years ago
Resolution: --- → DUPLICATE
Product: NSS → CA Program
Summary: Dhimyotis/Certigna: Failure to revoke in the timeline specified by the BRs → Dhimyotis / Certigna: Failure to revoke in the timeline specified by the BRs
Whiteboard: [ca-compliance] [delayed-revocation-leaf] → [ca-compliance] [leaf-revocation-delay]
You need to log in before you can comment on or make changes to this bug.