CA/Entrust Issues: Difference between revisions

Jump to navigation Jump to search

CA/Entrust Issues (view source)

Revision as of 17:07, 10 May 2024

115 bytes added ,  10 May 2024
→‎5. Jurisdiction Locality Wrong in EV Certificate -: Added delayed revocation
(→‎E. Issues in Recent History: Added Issues to Section E)
 
Line 168: Line 168:
https://bugzilla.mozilla.org/show_bug.cgi?id=1867130
https://bugzilla.mozilla.org/show_bug.cgi?id=1867130


Two EV TLS Certificates were mis-issued due to human error in the Jurisdiction Locality field. (The incident revealed 340 additional accounts needing similar updates.) Entrust said it would enhance its linting processes to include possibly using an external service to validate locality data against verified country data.  
Two EV TLS Certificates were mis-issued due to human error in the Jurisdiction Locality field. (The incident revealed 340 additional accounts needing similar updates.) Although not expressed in the bug, it appears that certificate revocation was delayed as well. Entrust said it would enhance its linting processes to include possibly using an external service to validate locality data against verified country data.  


'''Issues:'''  Certificate Mis-issuance
'''Issues:'''  Certificate Mis-issuance; Delayed Revocation


=== 6. SHA-256 hash algorithm used with ECC P-384 key - ===
=== 6. SHA-256 hash algorithm used with ECC P-384 key - ===
Bwilson
Confirmed users
569

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1250751"

Navigation menu