This website uses cookies

Our website, platform and/or any sub domains use cookies to understand how you use our services, and to improve both your experience and our marketing relevance.

📢 Virtual Event for Agencies & Ecommerce: Expert Strategies to Skyrocket Your Holiday Sales and Maximize Growth. Claim Your Spot Now→

DigiCert to Revoke Over 83,000 SSL Certificates Due to Validation Error

Updated on August 1, 2024

2 Min Read
DigiCert to Revoke Over 83,000 SSL Certificates Due to Validation Error

Certificate authority (CA) DigiCert has announced that it will revoke a subset of SSL/TLS certificates within 24 hours due to an oversight in verifying domain ownership.

The company revealed that certificates lacking proper Domain Control Validation (DCV) will be revoked. “Before issuing a certificate, DigiCert validates the customer’s control or ownership over the domain name using several CA/Browser Forum (CABF) approved methods,” DigiCert explained.

via GIPHY

One validation method involves the customer setting up a DNS CNAME record with a random value provided by DigiCert, which then performs a DNS lookup to verify the match. The random value is prefixed with an underscore to avoid conflicts with actual subdomains.

DigiCert discovered that it failed to include the underscore prefix in some CNAME-based validations due to changes in its system architecture starting in 2019. This oversight was not detected during cross-functional team reviews or regression testing.

The error came to light several weeks ago when a customer raised concerns about the random values used in validation. This issue affects approximately 0.4% of domain validations, impacting 83,267 certificates and 6,807 customers.

Affected customers are advised to replace their certificates by signing into their DigiCert accounts, generating a Certificate Signing Request (CSR), and reissuing them after passing DCV. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert, warning that the revocation may cause temporary disruptions to websites, services, and applications relying on these certificates.

DigiCert is actively working with impacted customers, including those operating critical infrastructure, to manage the reissuance process. However, all affected certificates will be revoked by August 3, 2024, 7:30 p.m. UTC.

Share your opinion in the comment section. COMMENT NOW

Share This Article

Start Growing with Cloudways Today.

Our Clients Love us because we never compromise on these

Abdul Rehman

Abdul is a tech-savvy, coffee-fueled, and creatively driven marketer who loves keeping up with the latest software updates and tech gadgets. He's also a skilled technical writer who can explain complex concepts simply for a broad audience. Abdul enjoys sharing his knowledge of the Cloud industry through user manuals, documentation, and blog posts.

×

Thankyou for Subscribing Us!

×

Webinar: How to Get 100% Scores on Core Web Vitals

Join Joe Williams & Aleksandar Savkovic on 29th of March, 2021.

Do you like what you read?

Get the Latest Updates

Share Your Feedback

Please insert Content

Thank you for your feedback!

Do you like what you read?

Get the Latest Updates

Share Your Feedback

Please insert Content

Thank you for your feedback!

Want to Experience the Cloudways Platform in Its Full Glory?

Take a FREE guided tour of Cloudways and see for yourself how easily you can manage your server & apps on the leading cloud-hosting platform.

Start my tour

CYBER WEEK SAVINGS

  • 0

    Days

  • 0

    Hours

  • 0

    Mints

  • 0

    Sec

GET OFFER

For 4 Months &
40 Free Migrations

For 4 Months &
40 Free Migrations

Upgrade Now