Understanding deliberate delayed revocation: a threat to trust
Deliberate delayed revocation—the intentional postponement of revoking compromised certificates—poses a severe risk to internet security and trust. This practice creates vulnerabilities, erodes confidence in the web PKI, and weakens industry standards. As a leading Certificate Authority (CA), Sectigo rejects this harmful approach, advocating for immediate revocation, transparency, and accountability. To protect the digital ecosystem, the CA community must commit to eliminating delayed revocation and ensuring a secure, trustworthy internet.
