This morning I was looking at the internal service level objective metrics for Let's Encrypt API endpoints and noticed a slight drop overnight. An engineer did a quick log search and turned up approximately 111 submission failures to Google's logs. That is, there
were 111 instances where we failed submission to both Argon2020 and
Xenon2020. During that period we were still seeing mostly successes from
those two logs. We had a successful submission rate of 12 qps for each
log, and a failed submission rate about 1 qps for each log.
A community member, Jonathan Rudenberg, pointed out that Google had some general service disruptions affecting services like Gmail from approximately 6pm to 6:30pm Pacific the previous evening. Our engineer then confirmed that the submission failures all happened during that time frame. This leads me to believe that whatever was affecting Google services like Gmail was likely also affecting Google's CT logs.
Cert Spotter confirms a 1 day error rate of 2.79% for Argon vs 0.04% over the past 90 days.
--
Josh Aas
Executive Director
Internet Security Research Group
Let's Encrypt: A Free, Automated, and Open CA