RE: AT SSL certificates without the AIA extension

2019-04-30 Thread Doug Beattie via dev-security-policy
our termination date in about 4 months. Doug -Original Message- From: Nick Lamb Sent: Tuesday, April 30, 2019 3:51 AM To: dev-security-policy@lists.mozilla.org Cc: Doug Beattie Subject: Re: AT SSL certificates without the AIA extension On Mon, 29 Apr 2019 12:41:07 + Doug Beattie via

Re: AT SSL certificates without the AIA extension

2019-04-30 Thread Nick Lamb via dev-security-policy
On Mon, 29 Apr 2019 12:41:07 + Doug Beattie via dev-security-policy wrote: > It should be noted that these certificates are not posted to CT logs > nor are they accessed via browsers as they are used within closed > networks, but we'll get more details on their exact usage shortly. Hi Doug,

AT SSL certificates without the AIA extension

2019-04-29 Thread Doug Beattie via dev-security-policy
In the course of normal communications with AT, we came across an SSL certificate that did not have the required AIA extension in it on Friday April 16th. We had a conference call shortly thereafter and they verified that one of their current EJBCA certificate profiles is missing this