Unplanned TLS/SSL Certificate Revocation
Incident Report for Safe Software
Resolved
This incident has been resolved.
Posted Jul 30, 2024 - 17:32 PDT
Update
We are continuing to monitor for any further issues.
Posted Jul 30, 2024 - 17:28 PDT
Monitoring
Due to an issue with our TLS/SSL certificate issuer, DigiCert, we were required to reissue the certificates used on FME Flow Hosted instances. The security of customer accounts and instances is not affected, but you may experience connectivity issues depending on the current status of your instance.

If your instance is currently running and has not been started or rebooted since 2024-07-30 02:00 UTC, you may need to restart it before 2024-07-30 19:30 UTC to trigger the certificate installation. If you do not restart the instance, it may take up to 24 hours for the new certificate to be installed. During this time, you would not be able to connect to your instance securely, as its certificate will have been revoked.

If your instance is currently paused, no further action is required. Your updated certificate will be installed automatically when you next start your instance.

To confirm that your instance certificate has been successfully updated, check its expiry date when visiting your instance URL in a browser. In Chrome, you can access this information as follows:
1. Click the "View site information" icon immediately to the left of the URL
2. Click "Connection is secure"
3. Click "Certificate is valid"
4. In the Certificate Viewer dialog, check the "Validity Period". Affected certificates have a validity period from 2024-05-03 to 2025-05-03 UTC. Updated certificates will have a validity period from 2024-07-30 to 2025-06-03 UTC.

We will be reaching out directly to customers with affected instances via email shortly.

For more information about the DigiCert incident, please see https://www.digicert.com/support/certificate-revocation-incident.
Posted Jul 29, 2024 - 19:16 PDT
This incident affected: FME Flow Hosted (FME Flow Hosted Instances).