Changes

Jump to: navigation, search

CA/Camerfirma Issues

525 bytes added, 17:07, 25 January 2021
Added issues VV and XX.
In 2020, Camerfirma issued a certificate to [https://bugzilla.mozilla.org/show_bug.cgi?id=1672423 an unregistered domain] based on a typo and human error. The proposed remediation was additional training. However, it was noted that the incident also exhibited inadequate domain validation, CAA checking, and certificate revocation, as well as a lack of historic examination of past incidents and meeting incident reporting requirements.
 
==Issue VV: Certificates without CABForum OV Reserved Policy Identifier (Jan. 2021)==
 
286 certificates were issued without the [https://bugzilla.mozilla.org/show_bug.cgi?id=1685557 CA/Browser Forum OV policy OID] because Quality Department overlooked a certificate profile change.
 
==Issue XX: CP/CPS of Intesa Sanpaolo Sub-CA is Non-Compliant (Jan. 2021)==
 
The [https://bugzilla.mozilla.org/show_bug.cgi?id=1688215 CPS for Intesa Sanpaolo] lacked specification about how domain validation and CAA checking are performed.
Confirm
341
edits

Navigation menu