Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events: (a) The Certificate Holder or Certificate Owner requests revocation of its Certificate; (b) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation; (c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused; (d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS; (e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity; (f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent; (g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name); (h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate; (i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS; (j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated; (k) QuoVadis’ Private Key for that Certificate has been compromised; (l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm); (m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or (n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 6 contracts
Samples: Certificate Holder Agreement, Certificate Holder Agreement, Certificate Holder Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events4.1. Sectigo may revoke a Certificate if Sectigo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with industry standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with industry standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSindustry standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted inaccurate or misleading,
(e.g., a court or arbitrator has revoked a Certificate Holder’s right to use viii) the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, technical content or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Sectigo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for EV Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with Sectigo’s CPS, industry standards, or, for EV Certificates, the EV Guidelines;
(xi) Sectigo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully- qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation;
(xiv) the Certificate was issued to publishers of malicious software;
(xv) Sectigo’s CPS authorizes revocation of the Certificate; or
(xvi) the Certificate, if not revoked, will compromise the trust status of Sectigo.
4.2. After revoking a Certificate, Sectigo may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 5 contracts
Samples: Certificate Subscriber Agreement, Certificate Subscriber Agreement, Sectigo Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of You acknowledge and accept that ISRG may immediately revoke Your Certificate if any of the following events:
(a) The party notifies ISRG that Your Certificate Holder is invalid or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised. ISRG will determine, in its sole discretion, whether to revoke Your Certificate. If You or Your agent requests that Your Certificate be revoked, ISRG will revoke Your Certificate as soon as practical. If a request for revocation is signed by your Private Key, then ISRG will automatically deem the request to be valid. You also acknowledge and accept that ISRG may, without advance notice, immediately revoke Your Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis if ISRG determines, in its sole discretion, that that: (i) Your Certificate was not properly issued or was obtained through misrepresentation, concealment, or fraud; (ii) Your Certificate has become, or appears to have become, unreliable; (iii) the security of the Private Key corresponding to the Your Certificate was used has been or may be stolen, lost, or otherwise compromised, or subject to signunauthorized use; (iv) any information in Your registration with ISRG or Your request for a Let’s Encrypt Certificate has changed or has become misleading, publish incorrect or distribute spywareinaccurate; (v) You have violated any applicable law, Trojans, viruses, rootkits, browser hijackers, phishingagreement (including this Agreement), or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
obligation; (gvi) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Your Certificate is no longer permitted being used, or has been used, to enable any criminal activity (e.g.such as phishing attacks, fraud or the distribution of malware); (vii) Your Certificate is being used, or has been used, to intercept the traffic of others; (viii) You request revocation; (ix) ISRG is legally required to revoke Your Certificate pursuant to a valid court order issued by a court of competent jurisdiction; (x) this Agreement has expired or arbitrator has revoked a Certificate Holder’s right been terminated; or (xi) there are other reasonable and lawful grounds for revocation. ISRG may provide notice of revocation via email to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware email address of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operationrecord.
Appears in 4 contracts
Samples: Subscriber Agreement, Subscriber Agreement, Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following eventsSectigo may revoke a Certificate if Sectigo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement, or any warranty or restriction provided therein;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with Industry Standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with Industry Standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSIndustry Standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g.inaccurate, a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminatedmisleading, or infringes the domain name registrant has failed to renew the domain name)intellectual property rights of a third party;
(hviii) QuoVadis receives notice the technical content or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Sectigo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for TLS Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with this Agreement, Sectigo’s CPS, or Industry Standards;
(xi) Sectigo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully- qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation;
(xiv) the Certificate was issued to publishers of Suspect Code, or may have been used to sign Suspect Code;
(xv) Sectigo’s CPS authorizes revocation of the Certificate; or
(xvi) the Certificate, if not revoked, will compromise the trust status of Sectigo. After revoking a Certificate, Sectigo may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 3 contracts
Samples: Certificate Subscriber Agreement, Sectigo Certificate Subscriber Agreement, Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following eventsTBS Internet or Sectigo may revoke a Certificate if TBS Internet or Sectigo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement, or any warranty or restriction provided therein;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with Industry Standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with Industry Standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSIndustry Standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g.inaccurate, a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminatedmisleading, or infringes the domain name registrant has failed to renew the domain name)intellectual property rights of a third party;
(hviii) QuoVadis receives notice the technical content or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in TBS Internet or Sectigo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for EV Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with this Agreement, TBS Internet’s CPS, or CABF Standards;
(xi) TBS Internet or Sectigo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ TBS Internet or Sectigo’s jurisdiction of operation;
(xiv) the Certificate was issued to publishers of Suspect Code, or may have been used to sign Suspect Code;
(xv) TBS Internet’s CPS authorizes revocation of the Certificate; or
(xvi) the Certificate, if not revoked, will compromise the trust status of TBS Internet or Sectigo. After revoking a Certificate, TBS Internet may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 3 contracts
Samples: TBS Internet Certificate Subscriber Agreement, TBS Internet Certificate Subscriber Agreement, TBS Internet Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any TunTrust revokes a Certificate within 24 hours if one or more of the following eventsoccurs:
(a) The Certificate Holder or Certificate Owner Subscriber requests revocation of its in writing that TunTrust revoke the Certificate;
(b) The Certificate Holder indicates Subscriber notifies TunTrust that the original Certificate Request certificate request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis TunTrust obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the CertificateCertificate suffered a Key Compromise or no longer complies with the requirements of the CP/CPS;
d) has been compromised, or TunTrust obtains evidence that the Certificate has otherwise been was misused;
(de) QuoVadis receives notice or otherwise become TunTrust is made aware that a Certificate Holder violates any Subscriber has violated one or more of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(ef) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being TunTrust is made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware any circumstance indicating that use of a fully qualified domain name or IP address Fully-Qualified Domain Name in the Certificate is no longer legally permitted (e.g., e.g. a court or arbitrator has revoked a Certificate HolderDomain Name Registrant’s right to use the domain name or other information listed in the CertificateDomain Name, a relevant licensing or services agreement between the domain name registrant Domain Name Registrant and the Certificate Holder Applicant has terminated, or the domain name registrant Domain Name Registrant has failed to renew the domain nameDomain Name);
(g) TunTrust is made aware that a Wildcard Certificate has been used to authenticate a fraudulently misleading subordinate Fully-Qualified Domain Name;
h) QuoVadis receives notice or otherwise becomes TunTrust is made aware of a material change in the information contained in the Certificate;
i) TunTrust is made aware that the Certificate or if QuoVadis was not issued in accordance with the applicable CP/CPS;
j) TunTrust determines that any of the information appearing in the Certificate is not accurateinaccurate or misleading;
(ik) A determination, in QuoVadis' sole discretion, that TunTrust ceases operations for any reason and has not made arrangements for another CA to provide revocation support for the Certificate was not issued in accordance with the terms and conditions of the CP/CPSCertificate;
(jl) QuoVadis’ TunTrust’s right to issue Certificates by law, regulation, or policy under these Requirements expires or is revoked or terminated, unless TunTrust has made arrangements to continue maintaining the CRL/OCSP Repository;
(km) QuoVadis’ TunTrust is made aware of a possible compromise of the Private Key of the Subordinate CA used for that Certificate has been compromisedissuing the Certificate;
(ln) Revocation is required by the TunTrust’s CP/CPS; or
o) The technical content or format of the Certificate presents an unacceptable risk to Application Software Vendors Suppliers or third parties Relying Parties (e.g., e.g. the CA/Browser Forum or industry standards require the deprecation of might determine that a deprecated cryptographic/signature algorithmalgorithm or key size presents an unacceptable risk and that such Certificates should be revoked and replaced by CAs within a given period of time);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 3 contracts
Samples: Subscriber Agreement, Subscriber Agreement, Subscriber Agreement
Revocation. Certificates issued IdenTrust will revoke the TrustID Secure Email Certificate upon request by QuoVadis will Customer (such request to be revoked on made in conformity with the occurrence provisions of any of the following events:
(aSection 4.5 above) The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) as soon as practical after IdenTrust has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determinesdetermined, in its sole discretion, that the person making the revocation request is authorized to do so. If the request is signed using the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the TrustID Secure Email Certificate, a relevant licensing or services agreement between IdenTrust will accept the domain name registrant and request as valid. IdenTrust may also revoke the TrustID Secure Email Certificate Holder has terminatedwithout advance notice if it determines, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
its sole discretion, that: (i) A determination, in QuoVadis' sole discretion, that the TrustID Secure Email Certificate was not properly issued in accordance with or was obtained by fraud; (ii) the terms and conditions security of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key corresponding to the TrustID Secure Email Certificate has or may have been lost or otherwise compromised; (iii) the TrustID Secure Email Certificate has become unreliable; (iv) material information in the application or the TrustID Secure Email Certificate has changed or has become false or misleading; (v) Customer has violated any applicable duty or obligation; (vi) Customer requests revocation; (vii) a governmental authority has lawfully ordered IdenTrust to revoke the TrustID Secure Email Certificate; (viii) this Agreement terminates; (ix) there are other reasonable grounds for revocation, including any violation of a provision of the CP or CPS by Customer; or (x) requests for IdenTrust to validate such Certificate or Digital Signatures made with such Certificate result in demands on the applicable validation operations of IdenTrust provided per the CPS that (a) materially reduce or (b) otherwise cause a serious problem affecting performance of such IdenTrust validation operations or related IdenTrust computer systems, in each case as determined by IdenTrust in its sole discretion. IdenTrust will send notice to Customer when the TrustID Secure Email Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operationrevoked.
Appears in 2 contracts
Samples: Subscriber Agreement, Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following eventsSectigo may revoke a Certificate if Sectigo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement, or any warranty or restriction provided therein;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with Industry Standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with Industry Standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSIndustry Standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g.inaccurate, a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminatedmisleading, or infringes the domain name registrant has failed to renew the domain name)intellectual property rights of a third party;
(hviii) QuoVadis receives notice the technical content or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Sectigo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for EV Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with this Agreement, Sectigo’s CPS, or CABF Standards;
(xi) Sectigo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully- qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation;
(xiv) the Certificate was issued to publishers of Suspect Code, or may have been used to sign Suspect Code;
(xv) Sectigo’s CPS authorizes revocation of the Certificate; or
(xvi) the Certificate, if not revoked, will compromise the trust status of Sectigo. After revoking a Certificate, Sectigo may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 2 contracts
Samples: Certificate Subscriber Agreement, Sectigo Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 2 contracts
Samples: Certificate Holder Agreement, Certificate Holder Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 2 contracts
Samples: Certificate Holder Agreement, Certificate Holder Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPSAgreement;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content content, or that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);.
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nm) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 2 contracts
Samples: Certificate Holder Agreement, Certificate Holder Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner Subscriber requests revocation of its Certificate;
(b) The Certificate Holder Subscriber indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder Subscriber violates any of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(e) The Certificate Holder Subscriber fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content content, or that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate HolderSubscriber’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between that the domain name registrant and the Certificate Holder has terminated, or the domain name registrant Subscriber has failed to renew the its domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurateCertificate;
(i) A determination, in QuoVadis' ’ sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) If QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(k) QuoVadis ceases operations for any reason and has not arranged for another CA to provide revocation support for the Certificate;
(l) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(km) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(mn) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(no) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder Subscriber has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 2 contracts
Samples: SSL Certificate Subscriber Agreement, SSL Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any Subscriber is hereby informed, and acknowledges understanding, of the following eventsreasons for revoking a Certificate, including those stated in the CPS, which is incorporated herein by reference and made a part of this Agreement. In addition, Sectigo may revoke a Certificate if Sectigo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement, or any warranty or restriction provided therein;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with Industry Standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with Industry Standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSIndustry Standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g.inaccurate, a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminatedmisleading, or infringes the domain name registrant has failed to renew the domain name)intellectual property rights of a third party;
(hviii) QuoVadis receives notice the technical content or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Sectigo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for TLS Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with this Agreement, Sectigo’s CPS, or Industry Standards;
(xi) Sectigo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully- qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation;
(xiv) the Certificate was issued to publishers of Suspect Code, or may have been used to sign Suspect Code;
(xv) Sectigo’s CPS authorizes revocation of the Certificate; or
(xvi) the Certificate, if not revoked, will compromise the trust status of Sectigo. After revoking a Certificate, Sectigo may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 2 contracts
Samples: Sectigo Certificate Subscriber Agreement, Sectigo Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner Subscriber requests revocation of its Certificate;
(b) The Certificate Holder Subscriber indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder Subscriber violates any of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(e) The Certificate Holder Subscriber fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, receives notice or otherwise become aware that the Private Key corresponding to Subscriber has used the Code-Signing Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, /phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurateCertificate;
(ih) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPSCPS or that that any of the information appearing in the Certificate is not accurate;
(i) QuoVadis ceases operations for any reason and has not arranged for another CA to provide revocation support for the Certificate;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nm) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder Subscriber has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
(n) Code signing certificates that have been revoked due to key compromise or that have been issued to unauthorized persons are maintained in QuoVadis’ public revocation database for at least 20 years.
Appears in 2 contracts
Samples: Code Signing Certificate Subscriber Agreement, Code Signing Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner Subscriber requests revocation of its Certificate;
(b) The Certificate Holder Subscriber indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder Subscriber violates any of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(e) The Certificate Holder Subscriber fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, receives notice or otherwise become aware that the Private Key corresponding to Subscriber has used the Code-Signing Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, /phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurateCertificate;
(ih) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPSCPS or that that any of the information appearing in the Certificate is not accurate;
(i) QuoVadis ceases operations for any reason and has not arranged for another CA to provide revocation support for the Certificate;
j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nm) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder Subscriber has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
n) Code signing certificates that have been revoked due to key compromise or that have been issued to unauthorized persons are maintained in QuoVadis’ public revocation database for at least 20 years.
Appears in 2 contracts
Samples: Code Signing Certificate Subscriber Agreement, Code Signing Certificate Subscriber Agreement
Revocation. CA Certificates issued by QuoVadis Gjaldstovan will be revoked on the occurrence of any of the following events:
(a) The CA Certificate Holder or Certificate Owner requests revocation of its CA Certificate;
(b) The CA Certificate Holder indicates that the original CA Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis Gjaldstovan obtains reasonable evidence that the CA Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis Gjaldstovan receives notice or otherwise become aware that a CA Certificate Holder violates any of its material obligations under the CA Certificate Holder Agreement or associated CP/CPS;
(e) The CA Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis Gjaldstovan determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis Gjaldstovan receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis Gjaldstovan determines that any of the information appearing in the Certificate is not accurate;
(ih) A determination, in QuoVadis' Gjaldstovans sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPSassociated CP /CPS;
(ji) QuoVadis’ Gjaldstovans right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(kj) QuoVadis’ The Private Key for that a Certificate has been compromised;
(lk) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Samleikin PKI;
(ml) Such additional revocation events as QuoVadis that Gjaldstovan publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nm) QuoVadis Gjaldstovan receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Gjaldstovans jurisdiction of operation.
Appears in 1 contract
Samples: Ca Certificate Holder Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any Subscriber is hereby informed, and acknowledges understanding, of the following eventsreasons for revoking a Certificate, including those stated in the CPS, which is incorporated herein by reference and made a part of this Agreement. In addition, Sectigo may revoke a Certificate if Sectigo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement, or any warranty or restriction provided therein;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with Industry Standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with Industry Standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSIndustry Standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g.inaccurate, a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminatedmisleading, or infringes the domain name registrant has failed to renew the domain name)intellectual property rights of a third party;
(hviii) QuoVadis receives notice the technical content or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Sectigo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for TLS Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with this Agreement, Sectigo’s CPS, or Industry Standards;
(xi) Sectigo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully- qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation.;
(xiv) the Certificate was issued to publishers of Suspect Code, or may have been used to sign Suspect Code, if the Certificate is a Code Signing Certificate;
Appears in 1 contract
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any Subscriber is hereby informed, and acknowledges understanding, of the following events:
reasons for revoking a Certificate, including those stated in the CPS, which is incorporated herein by reference and made a part of this Agreement. In addition, Sectigo may revoke a Certificate if Sectigo believes or has reason to believe that: (ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
; (bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisation;
granted authorization; (ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement, or any warranty or restriction provided therein; (iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with Industry Standards; (v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misused;
compromised or no longer complies with Industry Standards; (dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(ehas been 1) The Certificate Holder fails or refuses misused, 2) used contrary to complylaw, rule, regulation, or to promptly correct inaccurateIndustry Standard or 3) used, false directly or misleading indirectly, for illegal or fraudulent purposes; (vii) information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g.inaccurate, a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminatedmisleading, or infringes the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware intellectual property rights of a material change in third party; (viii) the information contained in technical content or the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Sectigo’s opinion, to Application Software Vendors Suppliers or third parties Relying Parties; (e.g.ix) for TLS Certificates, CA/Browser Forum Subscriber loses exclusive control over a domain name listed in the Certificate; (x) the Certificate was not issued or industry standards require used in accordance with this Agreement, Sectigo’s CPS, or Industry Standards; (xi) Sectigo 1) ceased operations or 2) is no longer allowed to issue the deprecation of a cryptographic/signature algorithm);
Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate; (mxii) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on for wildcard Certificates, the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully-qualified domain name; (xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation; (xiv) the Certificate was issued to publishers of Suspect Code, or may have been used to sign Suspect Code, if the Certificate is a Code Signing Certificate; (xv) Sectigo’s CPS authorizes revocation of the Certificate; (xvi) the use of an email address associated with the Certificate is no longer legally permissible or should not be relied on; or (xvii) the Certificate, if not revoked, will compromise the trust status of Sectigo. After revoking a Certificate, Sectigo may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 1 contract
Samples: Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any TunTrust revokes a Certificate within 24 hours if one or more of the following eventsoccurs:
(a) The Subscriber requests in writing that TunTrust revoke the Certificate Holder using TunTrust revocation online service available at xxxxx://xxx.xxxxxxxx.xx/Revocation-online-service or Certificate Owner requests revocation of its Certificatethrough physical presence before a TunTrust RA operator;
(b) The Certificate Holder indicates Subscriber notifies TunTrust that the original Certificate Request request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis TunTrust obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the CertificateCertificate suffered a Key Compromise;
d) has been compromisedTunTrust is made aware of a demonstrated or proven method that can easily compute the Subscriber’s Private Key based on the Public Key in the Certificate (such as a Debian weak key, see xxxxx://xxxx.xxxxxx.xxx/SSLkeys); or
e) TunTrust obtains evidence that the validation of domain authorization or control for any Fully-Qualified Domain Name or IP address in the Certificate should not be relied upon. TunTrust revokes a Certificate within 5 days if one or more of the following occurs:
a) The Certificate no longer complies with the requirements of Sections 6.1.5 and 6.1.6 of “TunTrust PKI CP/CPS” regarding Key Pairs;
b) TunTrust obtains evidence that the Certificate has otherwise been was misused;
(dc) QuoVadis receives notice or otherwise become TunTrust is made aware that a Certificate Holder violates any Subscriber has violated one or more of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(ed) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being TunTrust is made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware any circumstance indicating that use of a fully qualified domain name Fully-Qualified Domain Name or IP address in the Certificate is no longer legally permitted (e.g., e.g. a court or arbitrator has revoked a Certificate Holder’s Domain Name Registrant's right to use the domain name or other information listed in the CertificateDomain Name, a relevant licensing or services agreement between the domain name registrant Domain Name Registrant and the Certificate Holder Applicant has terminated, or the domain name registrant Domain Name Registrant has failed to renew the domain nameDomain Name);
(he) QuoVadis receives notice or otherwise becomes TunTrust is made aware that a Wildcard Certificate has been used to authenticate a fraudulently misleading subordinate Fully-Qualified Domain Name;
f) TunTrust is made aware of a material change in the information contained in the Certificate;
g) TunTrust is made aware that the Certificate was not issued in accordance with the Baseline Requirements or if QuoVadis the “TunTrust PKI CP/CPS”;
h) TunTrust determines or is made aware that any of the information appearing in the Certificate is not accurateinaccurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ TunTrust's right to issue Certificates by law, regulation, or policy under the CA/B Forum Baseline Requirements expires or is revoked or terminated, unless TunTrust has made arrangements to continue maintaining the CRL/OCSP Repository;
(j) Revocation is required by the TunTrust PKI CP/CPS; or
k) QuoVadis’ TunTrust is made aware of a demonstrated or proven method that exposes the Subscriber's Private Key to compromise, or if there is clear evidence that the specific method used to generate the Private Key was flawed. A Certificate may be revoked for the following reasons. If the situation is that multiple revocation reasons apply, the revocation reason of higher priority (as per the order of the following list) should be indicated:
a) keyCompromise (RFC 5280 CRLReason #1): The Certificate Subscriber must choose the "keyCompromise" revocation reason when they have reason to believe that the private key of their Certificate has been compromised;, e.g. an unauthorized person has had access to the private key of their Certificate.
b) cessationOfOperation (l) RFC 5280 CRLReason #5): The technical format Certificate Subscriber should choose the "cessationOfOperation" revocation reason when they no longer own all of the domain names in the Certificate presents an unacceptable risk or when they will no longer be using the Certificate because they are discontinuing their website.
c) affiliationChanged (RFC 5280 CRLReason #3): The Certificate Subscriber should choose the "affiliationChanged" revocation reason when their organization's name or other organizational information in the Certificate has changed.
d) superseded (RFC 5280 CRLReason #4): The Certificate Subscriber should choose the "superseded" revocation reason when they request a new Certificate to Application Software Vendors replace their existing Certificate.
e) No reason provided or third parties unspecified (e.g.RFC 5280 CRLReason #0): When the reason codes above do not apply to the revocation request, CA/Browser Forum or industry standards require the deprecation of Subscriber must not provide a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operationreason other than "unspecified".
Appears in 1 contract
Samples: Subscriber Agreement
Revocation. Certificates EuropeanSSL reserves the right to revoke a Subscriber’s Digital Certificate it has issued by QuoVadis will be revoked on in the occurrence of event that EuropeanSSL has reasonable grounds to believe that any of the following eventsevents has occurred:
(ai) The Certificate Holder or Certificate Owner Subscriber requests revocation of its Digital Certificate;
(bii) The Certificate Holder Subscriber indicates that the original Digital Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(ciii) QuoVadis EuropeanSSL obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the Digital Certificate) has been compromised, or that the Digital Certificate has otherwise been misused, or that a personal identification number, Private Key or password has, or is likely to become known to someone not authorized to use it, or is being or is likely to be used in an unauthorized way;
(div) QuoVadis EuropeanSSL receives notice or otherwise become aware that a Certificate Holder Subscriber violates any of its material obligations under the Certificate Holder this Agreement or CP/the EuropeanSSL CPS;
(ev) The Certificate Holder fails Subscriber has used the Subscription Service contrary to law, rule or refuses to complyregulation, or EuropeanSSL reasonably believes that the Subscriber is using the certificate, directly or indirectly, to promptly correct inaccurate, false engage in illegal or misleading information after being made aware of such inaccuracy, misrepresentation or falsityfraudulent activity;
(fvi) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis EuropeanSSL receives notice or otherwise become becomes aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate HolderSubscriber’s right to use the domain name or other information listed in the Digital Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant that Subscriber has failed to renew the its domain name);
(hvii) QuoVadis EuropeanSSL receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurateDigital Certificate;
(iviii) A a determination, in QuoVadis' EuropeanSSL's sole discretion, that the Digital Certificate was not issued in accordance with the terms and conditions of the CP/EuropeanSSL’s CPS;
(jix) QuoVadis’ EuropeanSSL determines that any of the information appearing in the Digital Certificate is not accurate;
(x) EuropeanSSL ceases operations for any reason and has not arranged for another certificate authority to provide revocation support for the Digital Certificate;
(xi) EuropeanSSL’s right to issue Digital Certificates by law, regulation, or policy expires or is revoked or terminatedterminated [unless EuropeanSSL makes arrangements to continue maintaining the CRL/OCSP Repository];
(kxii) QuoVadis’ EuropeanSSL’s Private Key for that Subscriber’s Digital Certificate has been compromised;
(lxiii) The technical format there has been, there is, or there is likely to be a violation of, loss of control over, or unauthorized disclosure of Confidential Information relating to the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Subscription Service;
(mxiv) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of Subscriber has used the event; orSubscription Service with third party software not authorized by EuropeanSSL for use with the Subscription Service;
(nxv) QuoVadis EuropeanSSL receives notice or otherwise becomes aware that a Certificate Holder Subscriber has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ EuropeanSSL’s jurisdiction of operation;
(xvi) either the Subscriber’s or EuropeanSSL’s obligations under the CPS or this Subscriber Agreement are delayed or prevented by a natural disaster, computer or communications failure, or other cause beyond the person's reasonable control, and as a result another person’s information is materially threatened or compromised;
(xvii) the certificate was issued to persons or entities identified as publishers of malicious software or that impersonated other persons or entities;
(xviii) the certificate was issued as a result of fraud or negligence; or
(xix) the certificate, if not revoked, will compromise the trust status of EuropeanSSL. EuropeanSSL may, at its sole discretion, after revocation of the Digital Certificate, reissue a Digital Certificate to Subscriber or terminate this Agreement in accordance with the provisions of this Agreement.
Appears in 1 contract
Samples: Subscriber Agreement
Revocation. Certificates issued by QuoVadis DigitalTrust will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis DigitalTrust obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis DigitalTrust receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPSanyof itsmaterialobligationsundertheCertificateHolder Agreement;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis DigitalTrust determines, in its sole discretion, that the Private Key corresponding to the Certificate was used wasused to sign, ,publish or distribute spyware, Trojans, ,viruses, rootkits, browser hijackers, phishing, or other content content, or that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a DigitalTrustreceivesnoticeor otherwisebecomeawarethata court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);.
(h) QuoVadis DigitalTrust receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that DigitalTrust determinesthat any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' DigitalTrust’s sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ DigitalTrust’s right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ DigitalTrust’s Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis DigitalTrust publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nm) QuoVadis DigitalTrust receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person hasbeenaddedasa deniedpartyor prohibitedperson to a blacklistablacklist, or is operating from a prohibited destination under the laws of QuoVadis’ DigitalTrust’s jurisdiction of operation.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events3.1. InCommon may revoke a Certificate if InCommon believes that:
(ai) The Certificate Holder or Certificate Owner Subscriber requests revocation of its the Certificate or did not authorize the Certificate’s issuance;
(ii) Subscriber breaches this Addendum;
(iii) Confidential Information related to the Certificate is disclosed or compromised;
(iv) the Certificate is 1) used contrary to law, rule, or regulation or 2) used, directly or indirectly, for illegal or fraudulent purposes;
(v) information in the Certificate is inaccurate or misleading,
(vi) Subscriber loses administrative control over a domain name listed in the Certificate;
(bvii) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued or used in accordance with the terms and conditions of the CP/InCommon’s CPS;
(jviii) QuoVadis’ right InCommon 1) ceases operations or 2) is no longer allowed to issue Certificates by lawthe Certificate, regulation, or policy expires or is revoked or terminatedand no other certificate authority has agreed to provide revocation support for the Certificate;
(kix) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been Subscriber is added as a denied party or prohibited person to a government blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ InCommon’s or Comodo’s jurisdiction of operation;
(x) the Certificate was issued to publishers of malicious software;
(xi) the CPS authorizes revocation of the Certificate;
(xii) the Certificate, if not revoked, will compromise the trust status of InCommon or Comodo.
3.2. In addition, Subscriber understands that Comodo may revoke the InCommon intermediary certificates if
(i) InCommon is in breach of its agreement;
(ii) InCommon acquires and deploys an alternate Authority Certificate or chooses to release from escrow its intermediary certificate private keys;
(iii) InCommon fails to meet any changes to the requirements of its CPS as obligated by any changes to industry standards such as Web Trust audit requirements
(iv) Comodo has reasonable grounds to believe the Intermediary Certificate has been compromised; or
(v) if InCommon’s license to use the Intermediary Certificate has been revoked or terminated under this Addendum and InCommon continues to use the Intermediary Certificate.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis DigitalTrust will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis DigitalTrust obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis DigitalTrust receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPSanyof itsmaterialobligationsundertheCertificateHolder Agreement;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis DigitalTrust determines, in its sole discretion, that the Private Key corresponding to the Certificate was used wasused to sign, ,publish or distribute spyware, Trojans, ,viruses, rootkits, browser hijackers, phishing, or other content content, or that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a DigitalTrustreceivesnoticeor otherwisebecomeawarethata court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);.
(h) QuoVadis DigitalTrust receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that DigitalTrust determinesthat any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' DigitalTrust’s sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ DigitalTrust’s right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ DigitalTrust’s Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis DigitalTrust publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nm) QuoVadis DigitalTrust receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ DigitalTrust’s jurisdiction of operation.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following eventsComodo may revoke a Certificate if Comodo believes that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Subscriber did not authorize the Certificate Holder indicates that the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key Subscriber breached this agreement;
(corresponding iv) Confidential Information related to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misuseddisclosed or compromised;
(dv) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, or CP/CPSregulation or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evi) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted inaccurate or misleading;
(e.g., vii) Subscriber loses exclusive control over a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(hviii) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued or used in accordance with Comodo’s CPS or industry standards, or, for EV Code Signing Certificates, the terms and conditions of the CP/CPSEV Guidelines;
(jix) QuoVadis’ right Comodo 1) ceased operations or 2) is no longer allowed to issue Certificates by lawthe Certificate, regulation, or policy expires or is revoked or terminatedand no other certificate authority has agreed to provide revocation support for the Certificate;
(kx) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Comodo’s jurisdiction of operation;
(xi) the Certificate was issued to publishers of malicious software;
(xii) the Certificate may have been used to digitally sign hostile code, including spyware or other malicious software;
(xiii) the CPS authorizes revocation of the Certificate; or
(xiv) the Certificate, if not revoked, will compromise the trust status of Comodo. After revoking the Certificate, Comodo may, in its sole discretion, reissue the Certificate to Subscriber or terminate this agreement.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis HydrantID will be revoked on the occurrence of any of the following events:
(a) a. The Certificate Holder fails to pay total amount due to HydrantID within two business days.
b. The Certificate Holder or Certificate Owner requests revocation of its Certificate;
(b) c. The Certificate Holder indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis d. HydrantID obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis e. HydrantID receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPSAgreement;
(e) f. The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis g. HydrantID determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content content, or that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis h. HydrantID receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);.
(h) QuoVadis i. HydrantID receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis HydrantID determines that any of the information appearing in the Certificate is not accurate;
(i) j. A determination, in QuoVadis' HydrantID’ sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadisk. HydrantID’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadisl. HydrantID’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) m. Such additional revocation events as QuoVadis HydrantID publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis n. HydrantID receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadisHydrantID’ jurisdiction of operation.
Appears in 1 contract
Samples: Certificate Holder and Secured Site Seal License Agreement
Revocation. SubCA Certificates issued by QuoVadis DigitalTrust will be revoked on the occurrence of any of the following events:
(a) The Certificate Holder or Certificate Owner requests revocation of its SubCA Certificate;
(b) The Certificate Holder indicates that the original Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis DigitalTrust obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis DigitalTrust receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPSanyof itsmaterialobligationsundertheCertificateHolder Agreement;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis DigitalTrust becomes aware that a private key of a CA or Managed PKI was used in order to issue the certificate may have been compromised.
(g) DigitalTrust determines, in its sole discretion, that the Private Key corresponding to the Certificate was used wasused to sign, ,publish or distribute spyware, Trojans, ,viruses, rootkits, browser hijackers, phishing, or other content content, or that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis DigitalTrust receives notice or otherwise becomes aware of a material change in the information contained in the SubCA Certificate or if QuoVadis DigitalTrust determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ DigitalTrust’s right to issue SubCA Certificates by law, regulation, or policy expires or is revoked or terminated;
(kj) QuoVadis’ DigitalTrust’s Private Key for that SubCA Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(mk) Such additional revocation events as QuoVadis DigitalTrust publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(nl) QuoVadis DigitalTrust receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ DigitalTrust’s jurisdiction of operation.
Appears in 1 contract
Revocation. Certificates XXX.xxx reserves the right to revoke a Subscriber’s Digital Certificate it has issued by QuoVadis will be revoked on in the occurrence of event that XXX.xxx has reasonable grounds to believe that any of the following eventsevents has occurred:
(ai) The Certificate Holder or Certificate Owner Subscriber requests revocation of its Digital Certificate;
(bii) The Certificate Holder Subscriber indicates that the original Digital Certificate Request was not authorised authorized and does not retroactively grant authorisationauthorization;
(ciii) QuoVadis XXX.xxx obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the Digital Certificate) has been compromised, or that the Digital Certificate has otherwise been misused, or that a personal identification number, Private Key or password has, or is likely to become known to someone not authorized to use it, or is being or is likely to be used in an unauthorized way;
(div) QuoVadis XXX.xxx receives notice or otherwise become aware that a Certificate Holder Subscriber violates any of its material obligations under the Certificate Holder this Agreement or CP/the XXX.xxx CPS;
(ev) The Certificate Holder fails Subscriber has used the Subscription Service contrary to law, rule or refuses to complyregulation, or XXX.xxx reasonably believes that the Subscriber is using the certificate, directly or indirectly, to promptly correct inaccurate, false engage in illegal or misleading information after being made aware of such inaccuracy, misrepresentation or falsityfraudulent activity;
(fvi) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis XXX.xxx receives notice or otherwise become becomes aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate HolderSubscriber’s right to use the domain name or other information listed in the Digital Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant that Subscriber has failed to renew the its domain name);
(hvii) QuoVadis XXX.xxx receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurateDigital Certificate;
(iviii) A a determination, in QuoVadis' XXX.xxx's sole discretion, that the Digital Certificate was not issued in accordance with the terms and conditions of the CP/XXX.xxx’s CPS;
(jix) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or XXX.xxx determines that any of the information appearing in the Digital Certificate is revoked or terminatednot accurate;
(kx) QuoVadis’ Private Key XXX.xxx ceases operations for that Certificate any reason and has been compromisednot arranged for another certificate authority to provide revocation support for the Digital Certificate;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operation.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following events4.1. Comodo may revoke a Certificate if Comodo believes or has reason to believe that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Certificate Holder indicates that Subscriber did not authorize the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that Subscriber breached the Certificate Holder’s terms of this Agreement;
(iv) the Private Key (corresponding to the Public Key in the Certificate) Certificate has been disclosed, compromised, or that no longer complies with industry standards;
(v) the Private Key of the subordinate Certificate used to issue the Certificate has otherwise been misusedcompromised or no longer complies with industry standards;
(dvi) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, regulation, or CP/CPSindustry standard or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evii) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted inaccurate or misleading,
(e.g., a court or arbitrator has revoked a Certificate Holder’s right to use viii) the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, technical content or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk risk, in Comodo’s opinion, to Application Software Vendors Suppliers or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm)Relying Parties;
(mix) Such additional revocation events as QuoVadis publishes for EV Certificates, Subscriber loses exclusive control over a domain name listed in its CP/CPS or deems appropriate based on the circumstances of the event; orCertificate;
(nx) QuoVadis receives notice the Certificate was not issued or otherwise becomes aware that a used in accordance with Comodo’s CPS, industry standards, or, for EV Certificates, the EV Guidelines;
(xi) Comodo 1) ceased operations or 2) is no longer allowed to issue the Certificate, and no other certificate authority has agreed to provide revocation support for the Certificate;
(xii) for wildcard Certificates, the Certificate Holder has been used to authenticate a fraudulently misleading subordinate fully- qualified domain name;
(xiii) Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Comodo’s jurisdiction of operation;
(xiv) the Certificate was issued to publishers of malicious software;
(xv) Comodo’s CPS authorizes revocation of the Certificate; or
(xvi) the Certificate, if not revoked, will compromise the trust status of Comodo.
4.2. After revoking a Certificate, Comodo may, in its sole discretion, reissue the Certificate to Subscriber and/or terminate this Agreement.
Appears in 1 contract
Samples: Certificate Subscriber Agreement
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any of the following eventsSectigo may revoke a Certificate if Sectigo believes that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate;
(bii) The Subscriber did not authorize the Certificate Holder indicates that the original Certificate Request was not authorised and does has not retroactively grant authorisationgranted authorization;
(ciii) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key Subscriber breached this Agreement;
(corresponding iv) Confidential Information related to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misuseddisclosed or compromised;
(dv) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement has been 1) misused, 2) used contrary to law, rule, or CP/CPSregulation or 3) used, directly or indirectly, for illegal or fraudulent purposes;
(evi) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted inaccurate or misleading;
(e.g., vii) Subscriber loses exclusive control over a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(hviii) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued or used in accordance with Sectigo’s CPS, industry standards, or the terms and conditions of the CP/CPSCABF Standards;
(jix) QuoVadis’ right Sectigo 1) ceased operations or 2) is no longer allowed to issue Certificates by lawthe Certificate, regulation, or policy expires or is revoked or terminatedand no other certificate authority has agreed to provide revocation support for the Certificate;
(kx) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been Subscriber is added as a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ Sectigo’s jurisdiction of operation;
(xi) the Certificate was issued to publishers of malicious software;
(xii) the Certificate may have been used to digitally sign hostile code, including spyware or other malicious software;
(xiii) the CPS authorizes revocation of the Certificate; or
(xiv) the Certificate, if not revoked, will compromise the trust status of Sectigo. After revoking the Certificate, Sectigo may, in its sole discretion, reissue the Certificate to Subscriber or terminate this Agreement.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any TunTrust revokes a Certificate within 24 hours if one or more of the following eventsoccurs:
(a) The Certificate Holder or Certificate Owner Subscriber requests revocation of its in writing that TunTrust revoke the Certificate;
(b) The Certificate Holder indicates Subscriber notifies TunTrust that the original Certificate Request certificate request was not authorised authorized and does not retroactively grant authorisationauthorization;
(c) QuoVadis TunTrust obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the CertificateCertificate suffered a Key Compromise or no longer complies with the requirements of the CP/CPS;
d) has been compromised, or TunTrust obtains evidence that the Certificate has otherwise been was misused;
(de) QuoVadis receives notice or otherwise become TunTrust is made aware that a Certificate Holder violates any Subscriber has violated one or more of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(ef) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being TunTrust is made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware any circumstance indicating that use of a fully qualified domain name or IP address Fully-Qualified Domain Name in the Certificate is no longer legally permitted (e.g., e.g. a court or arbitrator has revoked a Certificate HolderDomain Name Registrant’s right to use the domain name or other information listed in the CertificateDomain Name, a relevant licensing or services agreement between the domain name registrant Domain Name Registrant and the Certificate Holder Applicant has terminated, or the domain name registrant Domain Name Registrant has failed to renew the domain nameDomain Name);
(g) TunTrust is made aware that a Wildcard Certificate has been used to authenticate a fraudulently misleading subordinate Fully-Qualified Domain Name;
h) QuoVadis receives notice or otherwise becomes TunTrust is made aware of a material change in the information contained in the Certificate;
i) TunTrust is made aware that the Certificate or if QuoVadis was not issued in accordance with the applicable CP/CPS;
j) TunTrust determines that any of the information appearing in the Certificate is not accurateinaccurate or misleading;
(ik) A determination, in QuoVadis' sole discretion, that TunTrust ceases operations for any reason and has not made arrangements for another CA to provide revocation support for the Certificate was not issued in accordance with the terms and conditions of the CP/CPSCertificate;
(jl) QuoVadis’ TunTrust’s right to issue Certificates by law, regulation, or policy under these Requirements expires or is revoked or terminated, unless TunTrust has made arrangements to continue maintaining the CRL/OCSP Repository;
(km) QuoVadis’ TunTrust is made aware of a possible compromise of the Private Key of the Subordinate CA used for that Certificate has been compromisedissuing the Certificate;
(ln) Revocation is required by the TunTrust’s CP/CPS; or
o) The technical content or format of the Certificate presents an unacceptable risk to Application Software Vendors Suppliers or third parties Relying Parties (e.g., e.g. the CA/Browser Forum or industry standards require the deprecation of might determine that a deprecated cryptographic/signature algorithmalgorithm or key size presents an unacceptable risk and that such Certificates should be revoked and replaced by CAs within a given period of time);.
p) if the Subscriber (mor his representative) Such additional revocation events as QuoVadis publishes in its CP/CPS did not present himself to retrieve his ID-Trust certificate (digital signature certificate) from TunTrust CRA or deems appropriate based on any PVP within 90 calendar days from the circumstances date of generation of this certificate, TunTrust reserves the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder right to revoke this certificate without any prior notice. The Subscriber whose certificate has been added as revoked under these conditions, can file a denied party or prohibited person to a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operationnew certificate request at no additional cost using an invoice provided by TunTrust.
Appears in 1 contract
Samples: Subscriber Agreement
Revocation. 3.1. InCommon may revoke a Certificate if InCommon ceases operations or is no longer allowed to issue Certificates issued by QuoVadis will be revoked on and no other certificate authority has agreed to provide revocation support for the occurrence of any of the following eventsCertificates. Additionally, InCommon may revoke a Certificate if InCommon believes that:
(ai) The Certificate Holder or Certificate Owner requests Subscriber requested revocation of its the Certificate or did not authorize the Certificate’s issuance;
(ii) Subscriber breached this Addendum;
(iii) confidential information related to the Certificate is disclosed or compromised;
(iv) the Certificate is (1) used contrary to law, rule, or regulation or (2) used, directly or indirectly, for illegal or fraudulent purposes;
(v) information in the Certificate is inaccurate or misleading;
(vi) Subscriber lost administrative control over a domain name listed in the Certificate;
(bvii) The Certificate Holder indicates that the original Certificate Request was not authorised and does not retroactively grant authorisation;
(c) QuoVadis obtains reasonable evidence that the Certificate Holder’s Private Key (corresponding to the Public Key in the Certificate) has been compromised, or that the Certificate has otherwise been misused;
(d) QuoVadis receives notice or otherwise become aware that a Certificate Holder violates any of its material obligations under the Certificate Holder Agreement or CP/CPS;
(e) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate or if QuoVadis determines that any of the information appearing in the Certificate is not accurate;
(i) A determination, in QuoVadis' sole discretion, that the Certificate was not issued or used in accordance with the terms and conditions of the CP/InCommon’s CPS;
(jviii) QuoVadis’ right to issue Certificates by law, regulation, or policy expires or Subscriber is revoked or terminated;
(k) QuoVadis’ Private Key for that Certificate has been compromised;
(l) The technical format of the Certificate presents an unacceptable risk to Application Software Vendors or third parties (e.g., CA/Browser Forum or industry standards require the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances of the event; or
(n) QuoVadis receives notice or otherwise becomes aware that a Certificate Holder has been added as a denied party or prohibited person to a blacklistgovernment list, or is operating from a prohibited destination under the laws of QuoVadis’ InCommon’s or Sectigo’s jurisdiction of operation;
(ix) the Certificate was issued to publishers of malicious software;
(x) the CPS authorized revocation of the Certificate; or
(xi) the Certificate, if not revoked, will compromise the trust status of InCommon or Sectigo.
3.2. Subscriber understands that Sectigo may revoke the InCommon intermediary certificates if:
(i) InCommon is in breach of its agreement;
(ii) InCommon acquires and deploys an alternate Authority Certificate or chooses to release from escrow its intermediary certificate private keys;
(iii) InCommon fails to meet any changes to the requirements of its CPS as obligated by any changes to industry standards such as Web Trust audit requirements;
(iv) Sectigo has reasonable grounds to believe the intermediary certificate has been compromised; or
(v) InCommon’s license to use the intermediary certificate has been revoked or terminated under this Addendum and InCommon continues to use the intermediary certificate.
Appears in 1 contract
Revocation. Certificates issued by QuoVadis will be revoked on the occurrence of any TunTrust revokes a Certificate within 24 hours if one or more of the following eventsoccurs:
(a) The Certificate Holder or Certificate Owner Subscriber requests the revocation of its Certificate;his ID-Trust Certificate using TunTrust revocation online service available at xxxxx://xxx.xxxxxxxx.xx/Revocation-online-service
(b) The Subscriber requests the revocation of his DigiGo Certificate Holder indicates by accessing his private space at xxxxx://xxxxxx.xxxxxxxx.xx or through the link xxxxx://xxxxxx.xxxxxxxx.xx/pub/revoke ;
c) The Subscriber requests in writing that TunTrust revoke the Certificate by physically presenting himself before a TunTrust RA operator;
d) The Subscriber notifies TunTrust that the original Certificate Request request was not authorised authorized and does not retroactively grant authorisationauthorization;
e) TunTrust obtains a request of revocation from the DRAs (cwhere applicable);
f) QuoVadis TunTrust obtains reasonable evidence that the Certificate HolderSubscriber’s Private Key (corresponding to the Public Key in the CertificateCertificate suffered a Key Compromise;
g) has been compromisedTunTrust is made aware of a demonstrated or proven method that can easily compute the Subscriber’s Private Key based on the Public Key in the Certificate (such as a Debian weak key, see xxxxx://xxxx.xxxxxx.xxx/SSLkeys ); or
h) TunTrust obtains evidence that the validation of the email address contained in the Certificate should not be relied upon. TunTrust revokes a Certificate within 5 days if one or more of the following occurs:
a) The Certificate no longer complies with the requirements of Sections 6.1.5 and 6.1.6 of the applicable CP/CPS regarding Key Pairs;
b) TunTrust obtains evidence that the Certificate has otherwise been was misused;
(dc) QuoVadis receives notice or otherwise become TunTrust is made aware that a Certificate Holder violates any Subscriber has violated one or more of its material obligations under the Certificate Holder Agreement or CP/CPSSubscriber Agreement;
(ed) The Certificate Holder fails or refuses to comply, or to promptly correct inaccurate, false or misleading information after being TunTrust is made aware of such inaccuracy, misrepresentation or falsity;
(f) QuoVadis determines, in its sole discretion, that the Private Key corresponding to the Certificate was used to sign, publish or distribute spyware, Trojans, viruses, rootkits, browser hijackers, phishing, or other content that is harmful, malicious, hostile or downloaded onto a user’s system without their consent;
(g) QuoVadis receives notice or otherwise become aware that use of a fully qualified domain name or IP address in the Certificate is no longer permitted (e.g., a court or arbitrator has revoked a Certificate Holder’s right to use the domain name or other information listed in the Certificate, a relevant licensing or services agreement between the domain name registrant and the Certificate Holder has terminated, or the domain name registrant has failed to renew the domain name);
(h) QuoVadis receives notice or otherwise becomes aware of a material change in the information contained in the Certificate;
e) TunTrust is made aware that the Certificate was not issued in accordance with the Baseline Requirements or if QuoVadis the applicable CP/CPS;
f) TunTrust determines or is made aware that any of the information appearing in the Certificate is not accurateinaccurate;
(ig) A determination, in QuoVadis' sole discretion, that the Certificate was not issued in accordance with the terms and conditions of the CP/CPS;
(j) QuoVadis’ TunTrust's right to issue Certificates by law, regulation, or policy under the CA/B Forum Baseline Requirements expires or is revoked or terminated, unless TunTrust has made arrangements to continue maintaining the CRL/OCSP Repository;
(kh) QuoVadis’ Revocation is required by the applicable CP/CPS;
i) TunTrust is made aware of a demonstrated or proven method that exposes the Subscriber's Private Key for to compromise, or if there is clear evidence that the specific method used to generate the Private Key was flawed ; or
j) If the Subscriber (or his representative) did not physically present himself to retrieve his/her ID-Trust certificate from TunTrust CRA or any PVP within 90 calendar days from the date of issuance of the said Certificate, TunTrust reserves the right to revoke this Certificate without any notice. The Subscriber whose Certificate has been compromised;
(l) The technical format revoked under this condition and who physically presented himself before a TunTrust RA operator before the scheduled expiry date of the said Certificate, may submit a new Certificate presents request at no additional cost, with an unacceptable risk to Application Software Vendors or third parties invoice provided by TunTrust. A Certificate may be revoked for the following reasons. If the situation is that multiple revocation reasons apply, the revocation reason of higher priority (e.g., CA/Browser Forum or industry standards require as per the deprecation of a cryptographic/signature algorithm);
(m) Such additional revocation events as QuoVadis publishes in its CP/CPS or deems appropriate based on the circumstances order of the event; orfollowing list) should be indicated:
a) keyCompromise (n) QuoVadis receives notice or otherwise becomes aware RFC 5280 CRLReason #1): The Certificate Subscriber must choose the "keyCompromise" revocation reason when they have reason to believe that a Certificate Holder the private key of their certificate has been added as compromised, e.g. an unauthorized person has had access to the private key of their certificate.
b) cessationOfOperation (RFC 5280 CRLReason #5): The Certificate Subscriber should choose the "cessationOfOperation" revocation reason when they will no longer be using the Certificate.
c) affiliationChanged (RFC 5280 CRLReason #3): The Certificate Subscriber should choose the "affiliationChanged" revocation reason when their organization's name or other organizational information in the certificate has changed.
d) superseded (RFC 5280 CRLReason #4): The Certificate Subscriber should choose the "superseded" revocation reason when they request a denied party new certificate to replace their existing certificate.
e) No reason provided or prohibited person unspecified (RFC 5280 CRLReason #0): When the reason codes above do not apply to the revocation request, the Subscriber must not provide a blacklist, or is operating from a prohibited destination under the laws of QuoVadis’ jurisdiction of operationreason code other than "unspecified".
Appears in 1 contract
Samples: Subscriber Agreement
