-
-
Talk to a support representative at any time
Chat NowUnavailableEurope, Middle East Africa+44.203.788.7741Asia Pacific, Japan+61.3.9674.5500 -
- Log In
- 101
- Android
- Announcements
- Authentication
- Automation
- Best Practices
- Blockchain
- Breaches
- Browser
- CA/Browser Forum
- CertCentral
- Certificate Inspector
- Certificate Management
- Certificate Monitoring
- Certificate Pinning
- Certificate Transparency
- Code Signing
- Data Security
- DDoS
- DigiCert Labs
- DigiCert PKI Platform
- Encryption
- Enterprise Security
- EV UI Changes
- Events
- Health IT
- Healthcare Security
- High-Assurance Certificates
- HTTPS
- Identity
- Infographics
- IoT
- Malware
- Migration
- Mobile
- Multi-Factor Authentication
- National Cyber Security Awareness Month
- Network Security
- News
- OpenSSL
- Partner Blog
- Partner Program
- PKI
- Post-Quantum Cryptography
- Privacy
- Product
- PSD2
- Public Key Infrastructure
- QWACS
- Root Certificates
- RSA
- Secure Remote Work
- Security
- TLS/SSL
- SSL Certificate Management
- SSL In the News
- Tools
- Verified Mark Certificates
- Vulnerabilities
- WiFi Security
- Cloud Security
- Internet of Things
- 101
- Android
- Announcements
- Authentication
- Award
- Automation
- Best Practices
- Blockchain
- Breaches
- Browser
- CA/Browser Forum
- CertCentral
- Certificate Inspector
- Certificate Management
- Certificate Monitoring
- Certificate Pinning
- Certificate Transparency
- Code Signing
- Cyptography
- Data Security
- DDoS
- DigiCert Labs
- DigiCert PKI Platform
- DigiCert ONE
- Encryption
- Enterprise Security
- EV UI Changes
- Events
- Health IT
- Healthcare Security
- High-Assurance Certificates
- HTTPS
- Identity
- Infographics
- IoT
- Malware
- Migration
- Mobile
- Multi-Factor Authentication
- National Cyber Security Awareness Month
- Network Security
- News
- OpenSSL
- Partner Blog
- Partner Program
- PKI
- Post-Quantum Cryptography
- Privacy
- Product
- PSD2
- Public Key Infrastructure
- QWACS
- Root Certificates
- RSA
- Secure Remote Work
- Security
- TLS/SSL
- SSL Certificate Management
- SSL In the News
- Tools
- Verified Mark Certificates
- Vulnerabilities
- White Paper
- WiFi Security
- Cloud Security
- Internet of Things
- Online Learning
- Quantum Computing
- Certificate Management
Report Certificate Problems and Request Key Compromise Revocation at Speed: DigiCert's New Automated Revocation Solution
You can now submit a report of a private key compromise quickly and automatically get a revocation, if needed, with DigiCert’s Certificate Problem Reporting tool.
Responding to certificate problem reports and certificate revocation are key responsibilities of a certificate authority, and they are important aspects of ensuring online trust.
As part of our ongoing commitment to making the internet a safer space, ensuring the integrity of our certificates and continuously improving our processes, DigiCert recently released a new Certificate Problem Reporting Tool for compromised private keys, available to the general public.
How it works
The process for reporting compromised keys previously involved contacting the DigiCert support team. This new process enables faster responses and action. The reporting tool accepts evidence of compromised private keys and systematically verifies whether evidence provided is sufficient proof of compromise. If confirmed, the system schedules the impacted certificates for revocation.
Anyone can submit a problem report, including security researchers, customers and the general public. The new tool is available at problemreport.digicert.com.
How to use the Certificate Problem Reporting Tool
Note: if you own the affected certificate, you should use your CertCentral account to revoke and reissue it.
To submit a report of a compromised private key, follow these steps:
- Go to problemreport.digicert.com
- Select either “Use this form” or “Use API to report”
- Provide evidence of the compromised private key
- You must provide either a CSR with a common name of
“Proof of Key Compromise for DigiCert” or the private key itself
- You must provide either a CSR with a common name of
- Provide your email address so that we can follow up on your report
To report other certificate problems, including certificate misuse, fraud or inappropriate conduct, send an email to revoke@digicert.com detailing the issue and the certificate details.
Once you have submitted your problem report, DigiCert will investigate the issue within 24 hours and determine appropriate action, including revocation, in-line with CA/B Forum Baseline Requirements and industry standards.
Learn more
For more information on certificate revocations and the process DigiCert uses, see our blog "A Guide to TLS Certificate Revocations."
Featured Stories
-
About
At DigiCert, finding a better way to secure the internet is a concept that goes all the way back to our roots. That’s why our certificates are trusted everywhere, millions of times every day, by companies across the globe. It’s why our customers consistently award us the most five-star service and support reviews in the industry. And it’s why we’ll continue to lead the industry toward a more innovative and secure future. In SSL, IoT, PKI, and beyond—DigiCert is the uncommon denominator.
-
© 2021 DigiCert, Inc. All rights reserved. DigiCert and CertCentral are registered trademarks of DigiCert, Inc. in the USA and elsewhere. Other names may be trademarks of their respective owners.
Resources
Company
Legal
-
About
At DigiCert, finding a better way to secure the internet is a concept that goes all the way back to our roots. That’s why our certificates are trusted everywhere, millions of times every day, by companies across the globe. It’s why our customers consistently award us the most five-star service and support reviews in the industry. And it’s why we’ll continue to lead the industry toward a more innovative and secure future. In SSL, IoT, PKI, and beyond—DigiCert is the uncommon denominator.
-
Resources
Company
- About Us
- Blog
- Contact
- PR/News
- Events
- Media
- Leadership
- History
- Careers
- Solutions
- DigiCert Labs
- DigiCert ONE
Legal
-
© 2021 DigiCert, Inc. All rights reserved. DigiCert and CertCentral are registered trademarks of DigiCert, Inc. in the USA and elsewhere. Other names may be trademarks of their respective owners.