CA/Incident Dashboard

From MozillaWiki
< CA
Jump to: navigation, search

Open CA Bugs in Bugzilla

Open CA Compliance Bugs

A CA compliance bug relates to a concern about a CA's certificates failing to comply with Mozilla's CA Certificate Policy and/or the CA/Browser Forum's Baseline Requirements, and is determined to not be an imminent security concern.

Anyone may create a CA Compliance bug as follows:

Full Query
ID Summary Status Assigned to Whiteboard Last change time
1390990 D-TRUST: Non-BR-Compliant Certificate Issuance NEW Arno Fiedler [ca-compliance] 2019-01-16T14:43:39Z
1391074 T-Systems: Non-BR-Compliant Certificate Issuance ASSIGNED Lothar Eickholt [ca-compliance] Next Update - 21-January 2019 2019-01-17T14:57:55Z
1448986 Entrust - IP Address in dNSName form ASSIGNED Bruce Morton [ca-compliance] - Next Update - 01-April 2019 2019-01-17T14:59:02Z
1455137 T-Systems: Undisclosed Intermediate certificate NEW Bernd [ca-compliance] 2019-01-18T10:43:27Z
1456655 ABB issues with DN, country code and keyUsage UNCONFIRMED Brenda Bernal [ca-compliance] 2019-01-15T19:11:17Z
1462423 NetLock: CN not in SAN UNCONFIRMED Varga Viktor [ca-compliance] 2019-01-15T17:57:33Z
1462797 E-Tugra: Improper DER results in failure to comply with RFC 5280 - Invalid characters in PrintableString NEW Davut Tokgöz [ca-compliance] 2019-01-14T18:40:48Z
1463975 [GRCA] Misissued certificates: Invalid commonName, commonName not in SAN NEW National Development Council [ca-compliance] 2019-01-16T10:57:49Z
1466252 Cybertrust Japan: three test websites not provided ASSIGNED masahiro.shikutani [ca-compliance] - Next update 19-Oct-2018 2019-01-17T14:55:23Z
1468477 QuoVadis (Freistaat Bayern): Non-BR-compliant Key Usage ASSIGNED Stephen Davidson [ca-compliance] Next Update - 01-January 2020 2019-01-16T21:46:15Z
1475115 Telia: Qualified Audit Statements ASSIGNED pekka.lahtiharju [ca-compliance] Next Update - 1-February 2019 2019-01-17T14:54:10Z
1481862 Camerfirma: MULTICERT organizationName Too Long REOPENED Juan Angel Martin [ca-compliance] Next Update - 14-February 2019 2019-01-17T15:25:36Z
1492006 Comodo: Failure to revoke within 24 hours ASSIGNED Robin Alden [ca-compliance] Next Update - 24-January 2019 2019-01-17T15:00:19Z
1495497 KIR S.A.: Certificates issued with multiple BR violations ASSIGNED Piotr Grabowski [ca-compliance] 2019-01-16T23:56:19Z
1495507 Government of Spain FNMT: OU exceeds 64 characters ASSIGNED Rafa Medina [ca-compliance] Next Update - 1-February 2019 2019-01-17T14:54:29Z
1495518 Assecco DS / Certum: Unallowed key usage for EC public key (Key Encipherment) ASSIGNED Wojciech Trapczyński [ca-compliance] - Next Update - 01-July 2019 2019-01-17T15:00:50Z
1495524 Certinomis: Unqualified Domain Name in SAN ASSIGNED Marc MAITRE [ca-compliance] - Next Update - 01-January 2019 2019-01-17T14:55:03Z
1496088 Certinomis: certificate for, O=Entreprise TEST UNCONFIRMED Marc MAITRE [ca-compliance] 2019-01-14T18:01:29Z
1496616 Consorci: Qualified audit statements ASSIGNED Francesc Ferrer [ca-compliance] Next Update - 01-January 2020 2019-01-09T18:53:55Z
1498463 T-Systems: Improperly encoded QCStatements extension NEW Bernd [ca-compliance] 2019-01-09T15:28:03Z
1502957 Camerfirma: MULTICERT Misissuance and missing audits ASSIGNED Juan Angel Martin [ca-compliance] - Next Update - 07-March 2019 2019-01-17T14:54:44Z
1503128 Certinomis: email address in DNS SAN UNCONFIRMED Marc MAITRE [ca-compliance] 2019-01-17T19:32:19Z
1506607 SwissSign: Misissuance of Intermediate Certificates because of incorrect organizationIdentifier ASSIGNED Mike Guenther [ca-compliance] - Next Update - 01-February 2019 2019-01-17T15:01:08Z
1507376 TÜViT: Issues with T-Systems Audits NEW Matthias Wiedenhorst [auditor-compliance] 2019-01-10T17:57:03Z
1509002 Camerfirma: MULTICERT certificates with a validity period greater than 825 days UNCONFIRMED Eusebio Herrera [ca-compliance] 2019-01-16T19:16:48Z
1509512 Incident report D-TRUST: syntax error in one tls certificate UNCONFIRMED Enrico Entschew [ca-compliance] 2019-01-16T16:42:45Z
1512018 Entrust: Certificate issued with '-' in ST field UNCONFIRMED Bruce Morton [ca-compliance] 2019-01-17T19:15:31Z
1515788 DigiCert: Underscores - CVS Pharmacy UNCONFIRMED Jeremy Rowley [ca-compliance] 2019-01-18T05:56:18Z
1516453 DigiCert: Underscores - Discover UNCONFIRMED Jeremy Rowley [ca-compliance] 2019-01-18T06:04:52Z
1516545 DigiCert: Underscores - Verizon UNCONFIRMED Jeremy Rowley [ca-compliance] 2019-01-18T06:01:17Z
1516561 DigiCert: Underscores - Canadian Imperial Bank of Commerce ASSIGNED Brenda Bernal [ca-compliance] 2019-01-18T06:06:26Z
1516599 DigiCert: Underscores - Ericsson UNCONFIRMED Jeremy Rowley [ca-compliance] 2019-01-17T14:52:08Z
1517617 DigiCert: Underscores - Citi UNCONFIRMED Jeremy Rowley [ca-compliance] 2019-01-18T05:59:24Z
1518553 Sectigo: Use of forbidden subjectPublicKeyInfo algorithm ASSIGNED Robin Alden [ca-compliance] Next Update - 17-January 2019 2019-01-14T18:17:50Z
1518560 Asseco DS / Certum: Use of forbidden subjectPublicKeyInfo algorithm ASSIGNED Wojciech Trapczyński [ca-compliance] 2019-01-16T19:19:43Z
1519260 QuoVadis: Multiple unreported misissuances in 2018 ASSIGNED Stephen Davidson [ca-compliance] - Next Update - 01-July 2019 2019-01-17T14:58:04Z
1519265 QuoVadis: Recap of BR Compliance in 2018 issuance by external subCAs UNCONFIRMED Wayne Thayer [:wayne] [ca-compliance] 2019-01-11T00:12:16Z
1519572 DigiCert: Underscores - Intuit UNCONFIRMED Brenda Bernal [ca-compliance] 2019-01-18T06:03:25Z
1520299 Hongkong Post / Certizen: Failure to report misissuance ASSIGNED Man Ho [ca-compliance] 2019-01-18T12:23:55Z
1520876 Entrust: Late mis-issue certificate revocation ASSIGNED Bruce Morton [ca-compliance] 2019-01-17T20:25:51Z

40 Total; 40 Open (100%); 0 Resolved (0%); 0 Verified (0%);

Closed CA Bugs

Closed CA Compliance Bugs

A historical view of past CA compliance bugs may be found here: