Skip to main content

IdenTrust offers this webpage to inform stakeholders of events impacting to IGC CA services

Friday, July 1, 2022

IdenTrust Web Services Failure

1. Which CA components were affected by the incident

  • IdenTrust.com, IdenTrust Global Common Load Balancer, OCSP, and CRL responders  

2. The CA's interpretation of the incident

  • An unusually high traffic volume to IdenTrust.com caused an issue with Load Balancers. It was determined that the Load Balancers went into a state where there was a low amount of available system memory due to the unusual increase in traffic. The impact of that traffic caused Load Balancers to be saturated and resulted in only a small percentage of traffic to pass thru to the network.  This caused intermittent results with issuance, validation and reaching the IdenTrust.com website.

3. Who was impacted by the incident

  • Users of all IGC services, including issuance, validations, IdenTrust.com, and  OSCP Traffic seeking CRL were impacted by this slowdown. 

4. When the incident was discovered

  • Identified Failure Time – July 1, 2022 11:03 MST

5. A complete list of all certificates that were either issued erroneously or not compliant with the CP/CPS as a result of the incident

  • None

6. A statement that the incident has been fully remediated

  • Resolution Time - July 1, 2022 21:30 MST

  • Resolution statement - The root cause of the issue was identified as described above and was remediated; all systems returned to normal operation.

Friday, February 4, 2022

IdenTrust Web Services Failure

1. Which CA components were affected by the incident

  • IdenTrust Global Common OCSP and CRL responders 

2. The CA's interpretation of the incident

  • An IGC OCSP responder certificate had been renewed prior to expiration, but the system did not recognize the renewed certificate and therefore did not respond to OCSP queries after the old certificate expired. The resulting backup of unanswered queries eventually affected all services to IGC users.

3. Who was impacted by the incident

  • Users of all IGC services, including issuance and validations, were impacted

4. When the incident was discovered

  • Identified Failure Time - February 4, 2022 12:01 MST

5. A complete list of all certificates that were either issued erroneously or not compliant with the CP/CPS as a result of the incident

  • None

6. A statement that the incident has been fully remediated

  • Resolution Time - February 04, 2022 16:36 MST

  • Resolution statement - The root cause of the issue was identified as described above and was remediated; intermediate issues were also identified and remediated, and all systems returned to normal operation.