[13913] in cryptography@c2.net mail archive
duplication of serial number in Thawte certificates
daemon@ATHENA.MIT.EDU (Mads Rasmussen)
Thu Aug 21 22:09:10 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Mon, 28 Jul 2003 08:51:43 -0300
From: "Mads Rasmussen" <mads@opencs.com.br>
To: <cryptography@metzdowd.com>
Maybe this is old news, but I saw an article from the Register regarding
problems with duplication of serial numbers at Thawte, which could lead
to problems when verifying certificates.
http://www.securityfocus.com/news/6420
"Digital certificate specialist Thawte has discovered that its systems
have issued certificates with duplicate numbers over the last few
months.=20
If one of the paired certificates is revoked the other will also be
disavowed. Which is a pain. But essential encryption and security
functions are not affected" ...
The excerpt pretty much sums it up, I guess they will recover revoking
all duplicated and issuing new certs to the parties involved.
Regards,
Mads Rasmussen
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
