On Tue, Jul 30, 2024 at 12:40:44AM -0700, Jonathan Doe wrote: > Entrust appear to be threatening existing customers with revocation of > still-valid certs if contracts are not renewed.
Is there any possibility of sharing (redacted where necessary) communications that support this appearance? > I have seen with our own discussions with Entrust as well as those from > others in my network. We were told we could not get a short-term extension > to the Entrust contract while these issues are ongoing, and if we did not > renew the contract, all active certificates would be revoked. I would like to thank Entrust for this apparent further demonstration of why certificate lifecycle automation is so important. In an organisation that had lifecycle automation in place, it would be much easier to switch to a new CA, by adjusting some configuration (ACME directory and possibly credentials) and pressing "reissue". You could be completely switched off those hostage certificates before anyone knew, making any threatened revocation a non-issue. - Matt -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/390601c5-7ad6-44ad-bf41-d3ba4fa0078e%40mtasv.net.
