Techly NewsGet the app

Get the latest tech news

DigiCert Revoking Certs With Less Than 24 Hours Notice


In an incident report today, DigiCert says it discovered that some CNAME-based validations did not include the required underscore prefix, affecting about 0.4% of their domain validations. According to CA/Browser Forum (CABF) rules, certificates with validation issues must be revoked within 24 hours...

According to CA/Browser Forum (CABF) rules, certificates with validation issues must be revoked within 24 hours, prompting DigiCert to take immediate action. New submitter jdastrup first shared the news, writing: Due to a mistake going back years that has recently been discovered, DigiCert is required by the CABF to revoke any certificate that used the improper Domain Control Validation (DCV) CNAME record in 24 hours. This could take a lot of time and potentially cause outages worldwide starting July 30 at 19:30 UTC.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of revoking certs

revoking certs

« Malaysia is working on an internet 'kill switch', says minister