Changes

Jump to: navigation, search

CA/Camerfirma Issues

501 bytes added, 21:04, 3 December 2020
Added Issue UU re: issuance of certificate to unregistered domain
In 2020, Camerfirma issued a certificate where the [https://bugzilla.mozilla.org/show_bug.cgi?id=1680083 Org Name was preceded by a colon] ": ". The explanation provided was that validation officer did not notice the incorrect value before approving issuance. Added controls to decrease the likelihood of this happening in the future include additional training and highlighting certificate value fields.
 
==Issue UU: Certificate for unregistered domain (Oct. 2020)==
 
In 2020, Camerfirma issued a certificate to [https://bugzilla.mozilla.org/show_bug.cgi?id=1672423 an unregistered domain] based on a typo and human error. The proposed remediation was additional training. However, it was noted that the incident also exhibited inadequate domain validation, CAA checking, and certificate revocation, as well as a lack of historic examination of past incidents and meeting incident reporting requirements.
Confirm
341
edits

Navigation menu