certificate revocation - CERTIFICATE_HOLD

[mat.d...@gmail.com]

Hello,

We faced this error end of last week : 

om.sun.deploy.security.BlockedException: User has denied the privileges to the code

 at sun.plugin2.applet.Plugin2ClassLoader.getPermissions(Unknown Source)

 at sun.plugin2.applet.Applet2ClassLoader.getPermissions(Unknown Source)

 at java.security.SecureClassLoader.getProtectionDomain(Unknown Source)

 at java.security.SecureClassLoader.defineClass(Unknown Source)

 at java.net.URLClassLoader.defineClass(Unknown Source)

 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

 at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)

 at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)

 at java.lang.reflect.Method.invoke(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.defineClassHelper(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.access$100(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader$2.run(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader$2.run(Unknown Source)

 at java.security.AccessController.doPrivileged(Native Method)

 at sun.plugin2.applet.Plugin2ClassLoader.findClassHelper(Unknown Source)

 at sun.plugin2.applet.Applet2ClassLoader.findClass(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.loadClass0(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.loadClass(Unknown Source)

 at java.lang.ClassLoader.loadClass(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.loadCode(Unknown Source)

 at sun.plugin2.applet.Plugin2Manager.initAppletAdapter(Unknown Source)

 at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)

 at java.lang.Thread.run(Unknown Source)

Caused by: java.security.cert.CertificateRevokedException: Certificate has been revoked, reason: CERTIFICATE_HOLD, revocation date: Fri Nov 27 16:17:16 CET 2015, authority: CN=Certipost E-Trust Secondary Normalised CA for SSL and Code, O=Certipost s.a./n.v., C=BE, extension OIDs: [2.5.29.21]

 at com.sun.deploy.security.RevocationChecker.checkApprovedCRLs(Unknown Source)

 at com.sun.deploy.security.RevocationChecker.checkCRLs(Unknown Source)

 at com.sun.deploy.security.RevocationChecker.check(Unknown Source)

 at com.sun.deploy.security.TrustDecider.checkRevocationStatus(Unknown Source)

 at com.sun.deploy.security.TrustDecider.getValidationState(Unknown Source)

 at com.sun.deploy.security.TrustDecider.validateChain(Unknown Source)

 at com.sun.deploy.security.TrustDecider.isAllPermissionGrantedInt(Unknown Source)

 at com.sun.deploy.security.TrustDecider.isAllPermissionGranted(Unknown Source)

 at sun.plugin2.applet.Plugin2ClassLoader.isTrustedByTrustDecider(Unknown Source)

It is surprising because the date of validity of this certificate runs until March 2017!

Did you (or the government) revoked this certificate? (and why?) 

If so, is this temporary? Is this certificate will be unrevoked?

Thanks upfront for your answer

Regards

Mathieu D.

[Frank Cornelis]

Hi Mathieu,


Seems like there was an accidental suspension of the FedICT code signing certificate. This issue has been resolved.


Kind Regards,
Frank.

Op 30-11-15 om 16:14 schreef mat.d...@gmail.com:

--
You received this message because you are subscribed to the Google Groups "eID Applet" group.
To unsubscribe from this group and stop receiving emails from it, send an email to eid-applet+...@googlegroups.com.
To post to this group, send email to eid-a...@googlegroups.com.
Visit this group at http://groups.google.com/group/eid-applet.
For more options, visit https://groups.google.com/d/optout.