Hey everyone,
I wanted to give the community and update on how the DigiCert-Symantec transition is going and make everyone aware of a few issues I recently created on Bugzilla. First, the good news. DigiCert has started validating and issuing certificates through the Symantec platform for a limited number of customers. The initial tests are positive, and I think we're on track to meet the Dec 1 requirements. Thanksgiving next week is going to be a sad holiday, but we're very excited to see everything go live. Right now, we are doing DV, OV, and EV validation, although only issuing DV certs (as a test of the integration). You can see the hierarchy and migration plans here: https://bugzilla.mozilla.org/show_bug.cgi?id=1401384. I'm happy to answer any questions about it as well. The bad news is there are some compliance issues. 1. EV JOI issues. I filed this a while ago but never posted about it. This bug (https://bugzilla.mozilla.org/show_bug.cgi?id=1413761) caused duplicate certificates to issue with incorrect JOI information. Basically, when someone duplicated with a different key (RSA vs. ECC), incorrect JOI information would be placed in the certificate. The certs were revoked and everything was dumped into CT. 2. CAA Woes. Like most CAs, Symantec had improper CAA record checking where DNSSEC was not properly checked if the record timed out. (https://bugzilla.mozilla.org/show_bug.cgi?id=1409735). A patch was applied to prevent this. As of Dec 1, all CAA record checking will be done by DigiCert's systems instead of the systems we acquired from Symantec. 3. Undisclosed CAs. The details are a little iffy on this one so far, but I think there are a couple hundred undisclosed issuing CAs within Symantec's infrastructure. These CAs are not issuing TLS certs from what I can see, but they aren't disclosed in CCDAB (https://bugzilla.mozilla.org/show_bug.cgi?id=1417771). I'll be posting updates there as we figure out what we're looking at. I think there was confusion about whether these required disclosure as they don't issue certs and are within the Symantec HSMs. I think disclosure and audit reports are required so we'll be updating the latest audit report to show them. And my least favorite because its DigiCert pre-close: 4. Insufficient Entropy. This one makes me sad because of how dumb it is (https://bugzilla.mozilla.org/show_bug.cgi?id=1417777). DigiCert's older validation system validated domain control using random values in emails sent to the WHOIS contact. These random values did not contain 112 bits of entropy. They contained 112 bits, but some of the characters were fixed. The actual entropy was about 77. Only the one system was impacted. The root cause was a developer not realizing 112 bits != 112 bits of entropy. All other systems were verified as operationally correct. This impacts a large number of certs (like tens of thousands) so we're not 100% sure on how to best remediate, especially since significant entropy still existed in the random value. Let me know what questions/comments you have. Looking forward to the discussion! Jeremy
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy