CA/Camerfirma Issues: Difference between revisions

Jump to navigation Jump to search

CA/Camerfirma Issues (view source)

Revision as of 17:07, 25 January 2021

525 bytes added ,  25 January 2021
Added issues VV and XX.
(Added Issue UU re: issuance of certificate to unregistered domain)
(Added issues VV and XX.)
Line 218: Line 218:


In 2020, Camerfirma issued a certificate to [https://bugzilla.mozilla.org/show_bug.cgi?id=1672423 an unregistered domain] based on a typo and human error. The proposed remediation was additional training. However, it was noted that the incident also exhibited inadequate domain validation, CAA checking, and certificate revocation, as well as a lack of historic examination of past incidents and meeting incident reporting requirements.
In 2020, Camerfirma issued a certificate to [https://bugzilla.mozilla.org/show_bug.cgi?id=1672423 an unregistered domain] based on a typo and human error. The proposed remediation was additional training. However, it was noted that the incident also exhibited inadequate domain validation, CAA checking, and certificate revocation, as well as a lack of historic examination of past incidents and meeting incident reporting requirements.
==Issue VV: Certificates without CABForum OV Reserved Policy Identifier (Jan. 2021)==
286 certificates were issued without the [https://bugzilla.mozilla.org/show_bug.cgi?id=1685557 CA/Browser Forum OV policy OID] because Quality Department overlooked a certificate profile change.
==Issue XX: CP/CPS of Intesa Sanpaolo Sub-CA is Non-Compliant (Jan. 2021)==
The [https://bugzilla.mozilla.org/show_bug.cgi?id=1688215 CPS for Intesa Sanpaolo] lacked specification about how domain validation and CAA checking are performed.
Bwilson
Confirmed users
525

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1233296"

Navigation menu